You are viewing a plain text version of this content. The canonical link for it is here.
Posted to adffaces-issues@incubator.apache.org by "Adam Winer (JIRA)" <ad...@incubator.apache.org> on 2007/01/11 23:09:27 UTC
[jira] Created: (ADFFACES-351) window.parent references in JS can
lead to security exceptions
window.parent references in JS can lead to security exceptions
--------------------------------------------------------------
Key: ADFFACES-351
URL: https://issues.apache.org/jira/browse/ADFFACES-351
Project: MyFaces ADF-Faces
Issue Type: Bug
Reporter: Adam Winer
If you load a Trinidad page into an iframe where the parent is in a completely different domain, you can
get security exceptions as a few calls in Trinidad try to retrieve window.parent. All such calls
need to be wrapped in try/catch blocks to proceed when blocked.
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators: https://issues.apache.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
[jira] Updated: (ADFFACES-351) window.parent references in JS can
lead to security exceptions
Posted by "Matthias Weßendorf (JIRA)" <ad...@incubator.apache.org>.
[ https://issues.apache.org/jira/browse/ADFFACES-351?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Matthias Weßendorf updated ADFFACES-351:
----------------------------------------
Resolution: Fixed
Status: Resolved (was: Patch Available)
patch applied
> window.parent references in JS can lead to security exceptions
> --------------------------------------------------------------
>
> Key: ADFFACES-351
> URL: https://issues.apache.org/jira/browse/ADFFACES-351
> Project: MyFaces ADF-Faces
> Issue Type: Bug
> Reporter: Adam Winer
> Attachments: ADFFACES-351-Patch
>
>
> If you load a Trinidad page into an iframe where the parent is in a completely different domain, you can
> get security exceptions as a few calls in Trinidad try to retrieve window.parent. All such calls
> need to be wrapped in try/catch blocks to proceed when blocked.
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators: https://issues.apache.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
[jira] Updated: (ADFFACES-351) window.parent references in JS can
lead to security exceptions
Posted by "Matthias Weßendorf (JIRA)" <ad...@incubator.apache.org>.
[ https://issues.apache.org/jira/browse/ADFFACES-351?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Matthias Weßendorf updated ADFFACES-351:
----------------------------------------
Fix Version/s: 1.0.0-incubating-core
Affects Version/s: 1.0.0-incubating-core
> window.parent references in JS can lead to security exceptions
> --------------------------------------------------------------
>
> Key: ADFFACES-351
> URL: https://issues.apache.org/jira/browse/ADFFACES-351
> Project: MyFaces ADF-Faces
> Issue Type: Bug
> Affects Versions: 1.0.0-incubating-core
> Reporter: Adam Winer
> Fix For: 1.0.0-incubating-core
>
> Attachments: ADFFACES-351-Patch
>
>
> If you load a Trinidad page into an iframe where the parent is in a completely different domain, you can
> get security exceptions as a few calls in Trinidad try to retrieve window.parent. All such calls
> need to be wrapped in try/catch blocks to proceed when blocked.
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.
[jira] Updated: (ADFFACES-351) window.parent references in JS can
lead to security exceptions
Posted by "Blake Sullican (JIRA)" <ad...@incubator.apache.org>.
[ https://issues.apache.org/jira/browse/ADFFACES-351?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Blake Sullican updated ADFFACES-351:
------------------------------------
Status: Patch Available (was: Open)
> window.parent references in JS can lead to security exceptions
> --------------------------------------------------------------
>
> Key: ADFFACES-351
> URL: https://issues.apache.org/jira/browse/ADFFACES-351
> Project: MyFaces ADF-Faces
> Issue Type: Bug
> Reporter: Adam Winer
>
> If you load a Trinidad page into an iframe where the parent is in a completely different domain, you can
> get security exceptions as a few calls in Trinidad try to retrieve window.parent. All such calls
> need to be wrapped in try/catch blocks to proceed when blocked.
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators: https://issues.apache.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
[jira] Updated: (ADFFACES-351) window.parent references in JS can
lead to security exceptions
Posted by "Blake Sullican (JIRA)" <ad...@incubator.apache.org>.
[ https://issues.apache.org/jira/browse/ADFFACES-351?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Blake Sullican updated ADFFACES-351:
------------------------------------
Attachment: ADFFACES-351-Patch
> window.parent references in JS can lead to security exceptions
> --------------------------------------------------------------
>
> Key: ADFFACES-351
> URL: https://issues.apache.org/jira/browse/ADFFACES-351
> Project: MyFaces ADF-Faces
> Issue Type: Bug
> Reporter: Adam Winer
> Attachments: ADFFACES-351-Patch
>
>
> If you load a Trinidad page into an iframe where the parent is in a completely different domain, you can
> get security exceptions as a few calls in Trinidad try to retrieve window.parent. All such calls
> need to be wrapped in try/catch blocks to proceed when blocked.
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators: https://issues.apache.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira