New issue
Advanced search Search tips
Note: Color blocks (like or ) mean that a user may not be available. Tooltip shows the reason.

Issue 779116 link

Starred by 2 users
Status: Assigned
Owner:
mkwst@chromium.org
Buried. Ping if important.
Cc:
tsepez@chromium.org
Components:
EstimatedDays: ----
NextAction: ----
OS: ----
Pri: 3
Type: Bug



Sign in to add a comment

webcam logon broken, with creds

Reported by opticalp...@gmail.com, Oct 27 2017 
Chrome Version       : <Copy from: 'about:version'>
URLs (if applicable) :
Other browsers tested:firefox
  Add OK or FAIL, along with the version, after other browsers where you
have tested this issue:
     Safari:OK
    Firefox:OK
         IE:OK

What steps will reproduce the problem?
(1)access crestron fusion
(2)go to webcam monitoring window
(3)embeded credentials blocked as an error

What is the expected result?
pre - https://www.chromestatus.com/feature/5669008342777856 this would open the video stream in the frame


What happens instead?
nothing happens, and there is an error in the console
Subresource requests whose URLs contain embedded credentials (e.g. `https://user:pass@host/`) are blocked. See https://www.chromestatus.com/feature/5669008342777856 for more details. 


Please provide any additional information below. Attach a screenshot if
possible.
This breaks web cam logins via chrome with creds in the url. 
I suppose this is a well meaning "fix" but it is incredibly annoying. We use chrome in our environment, and having to change to another browser to do something makes me feel like its 2010 all over again.
2017-10-27 12_43_26-Crestron Fusion - Monitoring.png
41.9 KB View Download

Comment 1 by opticalp...@gmail.com, Oct 27 2017 

Google Chrome	61.0.3163.100 (Official Build) (64-bit) 
Revision	57c9d07b416b5a2ea23d28247300e4af36329bdc-refs/branch-heads/3163@{#1250}
OS	Windows
JavaScript	V8 6.1.534.41
Flash	27.0.0.183 C:\WINDOWS\system32\Macromed\Flash\pepflashplayer64_27_0_0_183.dll
User Agent	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/61.0.3163.100 Safari/537.36
Command Line	"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --flag-switches-begin --flag-switches-end
Executable Path	C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
Profile Path	C:\Users\dwrightvam.CARLYLEDC\AppData\Local\Google\Chrome\User Data\Default
Variations	c68ab9a3-3f4a17df
3095aa95-3f4a17df
7c1bc906-f55a7974
47e5d3db-3d47f4f4
d43bf3e5-bd7cd813
ba3f87da-45bda656
79616653-3f4a17df
5ca89f9-3f4a17df
9e201a2b-7e3ae057
5b3ed0a1-3f4a17df
68812885-4d2fac87
f347910c-3d47f4f4
b791c1b8-3f4a17df
9773d3bd-f23d1dea
99144bc3-3cc2175e
9e5c75f1-63f5aeea
f79cb77b-3d47f4f4
9591f600-d93a0620
be3b5415-bed9585
27219e67-b2047178
4ea303a6-ecbb250e
d92562a9-ca7d8d80
447469ba-c3067c67
7aa46da5-c946b150
de03e059-e65e20f2
fbe6bb40-3d47f4f4
1354da85-f34af386
494d8760-91c810ef
f47ae82a-86f22ee5
3ac60855-486e2a9c
f296190c-5840db52
4442aae2-6e3b1976
ed1d377-e1cc0f14
75f0f0a0-6bdfffe7
e2b18481-e1cc0f14
e7e71889-e1cc0f14
644b8345-ca7d8d80
94e68624-803f8fc4
828a5926-9d7acf42
Compiler	MSVC 2015 (PGO)

Comment 2 by rsleevi@chromium.org, Oct 27 2017

Components: -Blink Blink>SecurityFeature
Status: Untriaged (was: Unconfirmed)
mkwst: I believe this is working-as-intended, given the I2D, correct?

Comment 3 by mkwst@chromium.org, Nov 2 2017

Cc: -mkwst@chromium.org
Owner: mkwst@chromium.org
Status: Assigned (was: Untriaged)
Hi! It's not clear to me whether this is the behavior from the intentional change we made; if Chrome was blocking the requests entirely, you wouldn't be getting a 401 response, you'd be getting an error page.

Is there any message in the console? Do you see the same error in Canary?

Comment 4 by est...@chromium.org, Nov 10 2017

Labels: Hotlist-EnamelAndFriendsFixIt

Comment 5 by elawrence@chromium.org, Nov 20 2017 

As we don't have an environment to reproduce this, perhaps a network log could prove useful here? https://dev.chromium.org/for-testers/providing-network-details

Comment 6 by est...@chromium.org, Feb 18 2018

Labels: -Hotlist-EnamelAndFriendsFixIt

Sign in to add a comment