Opened 5 years ago

Last modified 22 months ago

#12654 new defect

httpse-ruleset-bug: Parts of Criterion site broken by Cloudfront rule

Reported by: cypherpunks Owned by: zyan
Priority: Medium Milestone:
Component: HTTPS Everywhere/EFF-HTTPS Everywhere Version:
Severity: Normal Keywords: Criterion, Cloudfront
Cc: Actual Points:
Parent ID: Points:
Reviewer: Sponsor:

Description

http://www.criterion.com/hulu

The view all films, online only, featured, learn more, etc. javascript links do not work.

http://www.criterion.com/library/expanded_view?m=bluray&s=spine

The find films by sorting section on the left.

Confirmed cause being HTTPS Everywhere due to working once disabled.

Web console shows..

Cross-Origin Request Blocked: The Same Origin Policy disallows reading the remote resource at http://d2ffltj98nrzzh.cloudfront.net/assets/main-6ca94474d75016609b48ad8ea401cdbb.js. This can be fixed by moving the resource to the same domain or enabling CORS.

Cross-Origin Request Blocked: The Same Origin Policy disallows reading the remote resource at http://d2ffltj98nrzzh.cloudfront.net/assets/hulu-c5c09a2b58d52b4b3d7b3d60c064c9a5.js. This can be fixed by moving the resource to the same domain or enabling CORS.

HTTPS-E 3.5.3

Child Tickets

Change History (1)

comment:1 Changed 22 months ago by teor

Severity: Normal

Set all open tickets without a severity to "Normal"

Note: See TracTickets for help on using tickets.