Open Bug 1295777 Opened 3 years ago Updated 11 months ago

Align nsMixedContentBlocker with Mixed Content Blocker spec

Categories

(Core :: DOM: Security, defect, P3)

defect

Tracking

()

People

(Reporter: tanvi, Unassigned)

References

(Depends on 4 open bugs, Blocks 2 open bugs)

Details

(Whiteboard: [domsecurity-backlog1])

When nsMixedContentBlocker was written in 2013, there was no mixed content blocking spec.  Now there is, which is great!  But our implementation isn't completely spec compatible.  For example, we don't use isOriginPotentiallyTrustworthy from the Secure Context spec.  We need to identify the gaps here and fix them (either all in one bug or multiple sub-bugs).

Editors draft: https://w3c.github.io/webappsec-mixed-content/

Latest published: https://www.w3.org/TR/mixed-content/
Priority: -- → P3
Whiteboard: [domsecurity-backlog1]
Depends on: 1328695
Assignee: nobody → kmckinley
Assignee: kate+bugzilla → nobody
Depends on: 1439463
Blocks: 1488740
You need to log in before you can comment on or make changes to this bug.