Local workers can be accessed even if "security.fileuri.strict_origin_policy" is set to true

UNCONFIRMED
Unassigned

Status

Firefox OS
General
UNCONFIRMED
3 years ago
3 years ago

People

(Reporter: Francois Grassard, Unassigned)

Tracking

Firefox Tracking Flags

(Not tracked)

Details

(Reporter)

Description

3 years ago
User Agent: Mozilla/5.0 (Windows NT 6.2; Win64; x64; rv:38.0) Gecko/20100101 Firefox/38.0
Build ID: 20150315004016

Steps to reproduce:

With FirefoxOS Developper Edition 64bits / Windows 8 :

If first launched a webworker with default security settings from my local drive.
Firefox said to me : "SecurityError: The operation is insecure"

I entered about:config, and set "security.fileuri.strict_origin_policy" to "false".
--> No more warning


Actual results:

One hour later, I set "security.fileuri.strict_origin_policy" back to "true". But the security message didn't came back. No more warning when I launched my webworker from local drive.


Expected results:

AKAIK, "SecurityError: The operation is insecure" should appear again.
Let me know if I'm wrong. :o)
(Reporter)

Updated

3 years ago
Hardware: x86 → x86_64
Component: Untriaged → General
Product: Firefox → Firefox OS
Version: 38 Branch → unspecified
You need to log in before you can comment on or make changes to this bug.