Skip to content

Commit ba4daff

Browse files
committed
request's origin = client's origin, not response's origin
1 parent e4c2982 commit ba4daff

File tree

1 file changed

+2
-1
lines changed

1 file changed

+2
-1
lines changed

fetch/metadata/multi-globals.https.sub.html

Lines changed: 2 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -20,10 +20,11 @@
2020
//
2121
// If Sec-Fetch-Site uses incumbentNavigationOrigin then the result will be same-origin.
2222
// If Sec-Fech-Site uses source BC's active document's origin then the result will be same-site.
23+
// The current spec for Sec-Fetch-Site uses request's origin = source BC's active document's origin.
2324
iframe.contentDocument.querySelector("iframe").src = "https://{{hosts[][]}}:{{ports[https][0]}}/fetch/metadata/resources/post-to-owner.py";
2425

2526
const data = await waitForMessage();
26-
assert_equals(data.site, "same-origin"); // TODO figure out if this is correct. It'd be nice to get rid of incumbentNavigationOrigin.
27+
assert_equals(data.site, "same-site");
2728
}, "Using iframeEl.src");
2829

2930
promise_test(async t => {

0 commit comments

Comments
 (0)