>> Anyway _SURF_URI will represents current page URL, so keeping _SURF_GO makes >> no sense. In our case it is matter of safety to not expose this one. > > Cool, good idea. Can't _SURF_URI have login/password info in > too (I haven't checked)?
AFAIK no, that one is taken out from WebKit (webkit_web_view_get_uri) which does not return passwords here, event they are used. At least at WebKit GTK version I am using. -- Adam Strzelecki
