QtWebkit Same-Origin-policy

Question

I have QtWebkit ported on Arm based platform. We are able to run QtTestBrowser. I wanted to disable "same-origin-policy" in the above browser.

Please let me know if any body has idea on this.

score 3 · Answer 1 · answered Jan 09 '13 at 17:23

3

I know this is old, but you can do this by modifying the QWebPage's settings:

auto settings = page.settings();
settings->setAttribute(QWebSettings::LocalContentCanAccessRemoteUrls,true);
settings->setAttribute(QWebSettings::LocalContentCanAccessFileUrls,true);

answered Jan 09 '13 at 17:23

Tim Finer

565
6
13

1

Yes, what you have said is correct. But if a remote need to access a local file ; For example, a local JS (file://) file or one domain access other (Not through AJAX ) I need to specify, what is allowed ; a whitelist. This will be highly insecure. But that was my "requirement" :). – hari Jan 10 '13 at 06:53

score 0 · Accepted Answer · answered Jan 07 '13 at 08:16

0

By default, Qt doesn't expose method to disable / whitelist the same origin policy. Extended the same (qwebsecurityorigin.cpp) and able to get it working.

answered Jan 07 '13 at 08:16

hari

1,419
4
19
30

QtWebkit Same-Origin-policy

2 Answers2

Linked