OSSForks/ladybird
1
0
Fork 0
mirror of https://github.com/zebrajr/ladybird.git synced 2025-12-06 12:20:00 +01:00
Code Issues Actions 3 Packages Projects Releases Wiki Activity

LibWeb/HTML: Allow throwing SecurityError for push/replaceState() abuse

Browse Source 
Corresponds to 73e51b414b
This commit is contained in:
Sam Atkins 2025-04-02 12:30:27 +01:00
parent 7367150536
commit 02e8c0e1d1
1 changed files with 3 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
Libraries/LibWeb/HTML/History.cpp
View File

@ -180,8 +180,9 @@ WebIDL::ExceptionOr<void> History::shared_history_push_replace_state(JS::Value d
if (!document->is_fully_active())
return WebIDL::SecurityError::create(realm(), "Cannot perform pushState or replaceState on a document that isn't fully active."_string);
// 3. Optionally, return. (For example, the user agent might disallow calls to these methods that are invoked on a timer,
// or from event listeners that are not triggered in response to a clear user action, or that are invoked in rapid succession.)
// 3. Optionally, throw a "SecurityError" DOMException. (For example, the user agent might disallow calls to these
// methods that are invoked on a timer, or from event listeners that are not triggered in response to a clear
// user action, or that are invoked in rapid succession.)
// 4. Let serializedData be StructuredSerializeForStorage(data). Rethrow any exceptions.
// FIXME: Actually rethrow exceptions here once we start using the serialized data.