search

blackberry / BB10-WebWorks-Framework

The BB10 WebWorks Framework is packaged within an application BAR file to run on a BB10 device (or simulator)
61 stars 34 forks source link

Whitelisting will reject requests containing @2x #293

Open jeffheifetz opened 12 years ago

jeffheifetz commented 12 years ago

Our whitelisting library uses the parseUri library to parse the uris.

Currently this library follows the standard that the @ symbol is reserved for authentication.

However Apple has put out its High Res Guidelines which ask developers to use @2x for resources which is likely the root cause of why we are seeing this in URLs.

The net result is that requests to resources with @2x will display a whitelisting error.

The obvious workaround is for developers to properly encode the request with @ as %40.

cc @kwallis @cdelcol @nukulb

nukulb commented 12 years ago

I assume this has nothing to do wiht the new whitelist changes though, I assume this would have always happened?

jeffheifetz commented 12 years ago

Correct, this is an issue in the webworks whitelisting policy and has no relation to webkit whatsoever.

jeffheifetz commented 11 years ago

According to http://tools.ietf.org/html/rfc3986#section-3.2 the authority section is terminated by a slash, this means the bug clearly lies in the parsing library being used