You are viewing a plain text version of this content. The canonical link for it is here.
Posted to issues@cordova.apache.org by "Shazron Abdullah (JIRA)" <ji...@apache.org> on 2015/12/17 01:10:46 UTC
[jira] [Resolved] (CB-2451) HTML5 audio/video tags bypass the
whitelist
[ https://issues.apache.org/jira/browse/CB-2451?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Shazron Abdullah resolved CB-2451.
----------------------------------
Resolution: Not A Problem
With App Transport Security (ATS) in iOS 9, not a problem anymore
> HTML5 audio/video tags bypass the whitelist
> -------------------------------------------
>
> Key: CB-2451
> URL: https://issues.apache.org/jira/browse/CB-2451
> Project: Apache Cordova
> Issue Type: Bug
> Components: iOS
> Affects Versions: 2.3.0, 2.4.0
> Reporter: Shazron Abdullah
> Labels: core
>
> Looks like audio/video tags do bypass the whitelist due to our recent changes. This line returns nil when it shouldn't:
> https://github.com/apache/cordova-ios/blob/e8a740176a465092b0d55dc9aee9a3e0ac314691/CordovaLib/Classes/CDVURLProtocol.m#L107
> Tested using:
> {code}
> <audio controls="controls">
> <source src="http://cordova.apache.org/downloads/BlueZedEx.mp3" />
> </audio>
> {code}
> and in config.xml:
> {code}
> <access origin="http://google.com" />
> {code}
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
---------------------------------------------------------------------
To unsubscribe, e-mail: issues-unsubscribe@cordova.apache.org
For additional commands, e-mail: issues-help@cordova.apache.org