W3C home > Mailing lists > Public > whatwg@whatwg.org > March 2007

[whatwg] window.opener and security

From: timeless <timeless@gmail.com>
Date: Tue, 20 Mar 2007 15:51:24 +0200
Message-ID: <26b395e60703200651v14582bd4u9cdb17cc53df5082@mail.gmail.com>
On 3/20/07, Hallvord R M Steen <hallvors at gmail.com> wrote:
> http://my.opera.com/hallvors/blog/2007/03/14/window-opener-and-security-an-unfixable-problem

I believe you'll find that Gmail does not have this problem, because
when it uses window.open, it opens a gmail page which then triggers a
server side redirect, and that destroys the window.opener link.

IOW, AFAIU it's a solved problem. It's probably safe to assume it
isn't patented.
Received on Tuesday, 20 March 2007 06:51:24 UTC

This archive was generated by hypermail 2.4.0 : Wednesday, 22 January 2020 16:58:53 UTC