[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

[tor-bugs] #12654 [EFF-HTTPS Everywhere]: httpse-ruleset-bug: Parts of Criterion site broken by Cloudfront rule



#12654: httpse-ruleset-bug: Parts of Criterion site broken by Cloudfront rule
-----------------------------------+----------------------
 Reporter:  cypherpunks            |          Owner:  zyan
     Type:  defect                 |         Status:  new
 Priority:  normal                 |      Milestone:
Component:  EFF-HTTPS Everywhere   |        Version:
 Keywords:  Criterion, Cloudfront  |  Actual Points:
Parent ID:                         |         Points:
-----------------------------------+----------------------
 http://www.criterion.com/hulu

 The view all films, online only, featured, learn more, etc. javascript
 links do not work.

 http://www.criterion.com/library/expanded_view?m=bluray&s=spine

 The find films by sorting section on the left.

 Confirmed cause being HTTPS Everywhere due to working once disabled.

 Web console shows..

 Cross-Origin Request Blocked: The Same Origin Policy disallows reading the
 remote resource at http://d2ffltj98nrzzh.cloudfront.net/assets/main-
 6ca94474d75016609b48ad8ea401cdbb.js. This can be fixed by moving the
 resource to the same domain or enabling CORS.

 Cross-Origin Request Blocked: The Same Origin Policy disallows reading the
 remote resource at http://d2ffltj98nrzzh.cloudfront.net/assets/hulu-
 c5c09a2b58d52b4b3d7b3d60c064c9a5.js. This can be fixed by moving the
 resource to the same domain or enabling CORS.

 HTTPS-E 3.5.3

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/12654>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs