[Bug 21147] WebSocket API could provide a method to get the HTTP response code when it's not 101 from bugzilla@jessica.w3.org on 2013-03-04 (public-webapps-bugzilla@w3.org from March 2013)

From: <bugzilla@jessica.w3.org>
Date: Mon, 04 Mar 2013 08:47:42 +0000
To: public-webapps-bugzilla@w3.org
Message-ID: <bug-21147-2532-lnRCAotF3A@http.www.w3.org/Bugs/Public/>

https://www.w3.org/Bugs/Public/show_bug.cgi?id=21147

--- Comment #4 from I <ibc@aliax.net> ---
How could a malicious script attack an arbitrary HTTP page using HTTP auth by
using WebSocket? The script cannot add the required Authorization or
Proxy-Authorization header at all.

-- 
You are receiving this mail because:
You are the QA Contact for the bug.

Received on Monday, 4 March 2013 08:47:50 UTC