From Bugzilla Helper: User-Agent: Mozilla/5.0 (Windows; U; WinNT4.0; en-US; m18) Gecko/20001010 BuildID: 2000101014 See "steps to reproduce" Reproducible: Always Steps to Reproduce: 1. Enter anything at all in the "login id" and "password" fields. 2. Click "submit". Actual Results: Nothing happens. Expected Results: Should go to another page. The "clear" and "change login password" buttons work OK.

send over to component HTML Form Controls

I think this might be an rtm bug, but I am still investigating.

I have saved the pages out to disk (the best I could) and I am not getting the same error. I think it has to do with accessing script across frame boundaries. Here is the error running in friday's trunk build, in mozilla: JavaScript error: https://tdaccess37.tdbank.ca/login2.asp line 59: JavaScript error: line 0: uncaught exception: [Exception... "Access to property denied" code: "1 010" nsresult: "0x805303f2 (NS_ERROR_DOM_PROP_ACCESS_DENIED)" location: "https: //tdaccess37.tdbank.ca/login2.asp Line: 59"] Basically, what is happening is they are loading various files in different frames in the frameset. Some of the files are script only and are accessed from one document to another.I think the error maybe in this fundtion. "confirmLogin" is called when the submit button is pressed. I notice that no actual "submit" call is being made, because I set a breakpoint in nsFormFrame::OnSubmit. function confirmLogin(formObject,formConnect) { if (top.frames[0].CheckTransactionInProgress()) { if (top.frames[0].emptyField(formObject.uname)) { alert("You must enter a User ID."); } else if (top.frames[0].emptyField(formObject.password)) { alert("You must enter a password."); } else if ((formObject.password.value.length < 5 ) || (formObject.password.value.length > 8)) { alert("Either your Login ID or Password is invalid.\nPlease Try Again."); } else { if (docheck(formObject.uname.value) == 1 || docheck(formObject.password.value) == 1) { alert("Either your Login ID or Password is invalid.\nPlease Try Again."); }else{ saveConnectID(formObject.uname.value,formConnect); top.frames[0].setTransactionInProgress( "TRUE" ); top.frames[6].document.Logon.submit(); } } } }

reassigning

The "Access to property denied" message indicates that the script is stopping execution due to a security violation. Handing this over to Security to verify that we're doing the right thing - also CC'ing jst since it's DOM access.

This issue came up as bug 45099, and I marked it WONTFIX. The tdwaterhouse.ca site calls javascript functions on a frame loaded from a different host from the calling frame. In this case, of course, both hosts are owned by tdwaterhouse, but nonetheless, we don't allow this. We're much stricter in this regard now than 4.x; I'm not sure about IE. This is the only site I have seen so far which is broken by our restrictive security policy; is it worth relaxing the policy for this one site? Does anyone know of other sites with this problem? The workaround for the site is to put both hosts under the same domain and set document.domain to the common domain suffix on both pages. Many sites work this way, such as http://www.bmwusa.com . *** This bug has been marked as a duplicate of 45099 ***

Marking VERIFIED DUPLICATE per Mitch's comments & 45099