Google Git
Sign in
chromium / chromium / src / 7b08ba6f8a304633e96cd122982c483ffd1bcafe
commit7b08ba6f8a304633e96cd122982c483ffd1bcafe[log] [tgz]
authortsepez@chromium.org <tsepez@chromium.org@0039d316-1c4b-4281-b951-d872f2087c98>Fri Feb 10 20:19:41 2012
committertsepez@chromium.org <tsepez@chromium.org@0039d316-1c4b-4281-b951-d872f2087c98>Fri Feb 10 20:19:41 2012
tree36cf877fd56845de88adf84b6393e6fb79ea8ca0
parentc0714dfcceb93df1dda0af23d72fc29a5399556c [diff]
Don't use IDENT_SRC_URL for HttpAuth challenges.  IE hasn't supported it for years, and at worst it represents a session fixation attack.

BUG=94578
Committed: https://src.chromium.org/viewvc/chrome?view=rev&revision=120836

Review URL: http://codereview.chromium.org/9307093

git-svn-id: svn://svn.chromium.org/chrome/trunk/src@121506 0039d316-1c4b-4281-b951-d872f2087c98
3 files changed
tree: 36cf877fd56845de88adf84b6393e6fb79ea8ca0
  1. ash/
  2. base/
  3. breakpad/
  4. build/
  5. chrome/
  6. chrome_frame/
  7. cloud_print/
  8. content/
  9. courgette/
  10. crypto/
  11. dbus/
  12. google_update/
  13. gpu/
  14. ipc/
  15. jingle/
  16. media/
  17. native_client_sdk/
  18. net/
  19. ppapi/
  20. printing/
  21. remoting/
  22. sandbox/
  23. sdch/
  24. skia/
  25. sql/
  26. testing/
  27. third_party/
  28. tools/
  29. ui/
  30. webkit/
  31. .DEPS.git
  32. .gitignore
  33. AUTHORS
  34. codereview.settings
  35. DEPS
  36. LICENSE
  37. OWNERS
  38. PRESUBMIT.py
  39. WATCHLISTS