Closed
Bug 80390
Opened 25 years ago
Closed 25 years ago
the referer is null while using tag <script src=>
Categories
(Core :: Networking: HTTP, defect)
Tracking
()
mozilla0.9.2
People
(Reporter: webmaster, Assigned: neeti)
References
()
Details
From Bugzilla Helper:
User-Agent: Mozilla/4.0 (compatible; MSIE 5.5; Windows NT 5.0)
BuildID: 2001050515
A simple example, in the site A , i want to retrieve some contents from the
site B in javascript
so i write the following on the site A in a page:
<script scr="http://wwww.siteB.com/get_info.jsp"></script>
the site B when receiving the request, look at the referer which ask for
information and then send correct contents for that site.
Under netscape / mozilla, the referer is always null, therefore my architecture
cant work on those browsers (
For more information about the architecture check the following:
http://www.magelo.com/overview.html
Reproducible: Always
Steps to Reproduce:
1.go to http://www.magelo.com/forum
Actual Results: Under Netscape / Mozilla , a security exception is thrown,
means that the referer was null
Expected Results: U should see the list of forums
Looks like Netscape / Mozilla dont put the referer in the header in that
particular case
Comment 1•25 years ago
|
||
--> DOM
Assignee: rogerl → jst
Component: Javascript Engine → DOM Level 0
QA Contact: pschwartau → desale
Comment 2•25 years ago
|
||
cc'ing Mitch in case this is a known Security issue -
forgot the .html in the url gave in the first step to reproduce the bug
sorry
Comment 4•25 years ago
|
||
I don't think this is a security issue, not directly anyway. Reporter, the issue
is that the HTTP request generated by a SCRIPT SRC= tag requesting the script
does not include a referrer header, right? If that's the bug, then this is a
Networking issue. We have some guidelines for when a referrer should be included
and when not, and I'm not sure in this case. Sometimes it's a privacy issue. Do
we set referrer headers in requests for other types of included content, like
images?
Assignee: jst → neeti
Status: UNCONFIRMED → NEW
Component: DOM Level 0 → Networking: HTTP
Ever confirmed: true
QA Contact: desale → tever
Ya Mitchell,its exactly the trouble.
my report looks like a dupe of <a ref="http://bugzilla.mozilla.org/show_bug.cgi?
id=64248">Bugzilla Bug 64248</a>
like Ian 'Hixie' Hickson said, in three tier application where another website
hosts just the content but points to scripts on other hosts the referrer is
vital.
*** This bug has been marked as a duplicate of 64248 ***
Status: NEW → RESOLVED
Closed: 25 years ago
Resolution: --- → DUPLICATE
You need to log in
before you can comment on or make changes to this bug.
Description
•