Closed Bug 1161931 Opened 5 years ago Closed 5 years ago

Remember user's client certificate selection across sessions

Categories

(Firefox :: Security, defect)

38 Branch
defect
Not set
major

Tracking

()

RESOLVED DUPLICATE of bug 634697

People

(Reporter: eduard_goebl, Unassigned)

Details

User Agent: Mozilla/5.0 (X11; Linux i686; rv:31.0) Gecko/20100101 Firefox/31.0
Build ID: 20150325203137

Steps to reproduce:

At the moment, Firefox does not remember the user's client certificate selection across sessions. Every time a users chooses a client certificate for a specific site and closes FF afterwards, he will be prompted to choose the particular certificate on the next visit of this site again. The checkbox 'Remember my decision' is misleading since it only remembers the certificate selection for the current session!

Steps to reproduce:
* set security.default_personal_cert to "Ask Every Time"
* visit https://www.scriptjunkie.us/getacert.php
* create two or more certificates with different names
* go to https://www.scriptjunkie.us/auth/verifycert
* choose any certificate and enable "Remember my decision"
* you should now see Welcome, [name]!
* close Firefox completely
* visit https://www.scriptjunkie.us/auth/verifycert again


Actual results:

Certificate selection is not remembered and the user has to choose a certificate again.


Expected results:

Please add the possibility to remember client certificate selection across sessions. Furthermore, is it possible to make this configurable; for instance:

security.default_personal_cert: 
* Ask every time (Really ask _every_ time and do not provide 'remember'-checkbox)
* Select Preferred (Ask if no client certificate has been chosen yet, choose remembered certificate if there is already a preferred certificate)
* Select Automatically (Do not prompt and take the first valid certifiacte)

I would be very grateful if this feature request gets some attention since remembering certificate selection across sessions has already been requested by several customers. Do not hesitate to contact me if you need any further input or help.

There are already several bug reports for comparable issue, which maybe are useful: 634697, 435254, 1081711 (There was a bug that didn't remember the certificate selection even in the current session), 1061412, 503229, 949443

Thank you for your consideration and best wishes!

P.S.: Why does the setting security.default_personal_cert expect a string instead of an integer? This is very uncommon compared to the other setting parameters.
Severity: normal → major
Component: Untriaged → Security
Hi Eduard, thanks for filing this bug. I believe it's the same issue as bug 634697.
Status: UNCONFIRMED → RESOLVED
Closed: 5 years ago
Resolution: --- → DUPLICATE
Duplicate of bug: 634697
You need to log in before you can comment on or make changes to this bug.