Bug #44108
closed
extjs core runs http requests to www.extjs.com (www.sencha.com)
0%
Description
Hi Core-Team,
there are obviously http requests from within the extjs framework to the website of the extjs project. In ext-all-debug.js and thus in ext-all.js an image is requested by calling http://www.extja.com/s.gif (http://www.sencha.com/s.gif) depending on the browser. This not only leads to a security warning in IE7, if the website runs in https mode. Furthermore it is a severe security issue in general. Since extjs is part of the TYPO3 core, can you bring the extjs project to remove these calls from the extjs-core?
Best regards
Joachim
Updated by Jigal van Hemert almost 12 years ago
- Status changed from New to Accepted
In the PageRenderer it seems that Ext.BLANK_IMAGE_URL is set to the blank image in the TYPO3 installation. Maybe we can this on a more global level?
Updated by Joachim Mathes almost 12 years ago
Thanks for this hint! This will help us with our extension, which uses the sencha tree widget in an AJAX context. Nevertheless it would be great, if you find a more global level.
Updated by Helmut Hummel almost 12 years ago
- Status changed from Accepted to Needs Feedback
Jigal van Hemert wrote:
In the PageRenderer it seems that Ext.BLANK_IMAGE_URL is set to the blank image in the TYPO3 installation. Maybe we can this on a more global level?
So is it a problem in the usage of ExtJS in TYPO3 itself or only if the pageRenderer is not used?
Updated by Joachim Mathes almost 12 years ago
In my case it's the usage of EXTJS in a TYPO3 extension. But we managed to solve the problem like it was solved in the pageRenderer.
Updated by Helmut Hummel almost 12 years ago
- Status changed from Needs Feedback to Rejected
Joachim Mathes wrote:
In my case it's the usage of EXTJS in a TYPO3 extension. But we managed to solve the problem like it was solved in the pageRenderer.
OK, so it's no TYPO3 Core problem