Closed Bug 1348910 Opened 8 years ago Closed 8 years ago

Visiting a site via an insecure address, then visiting via secure doesn't update the autofill offer

Categories

(Toolkit :: Places, defect, P2)

Product:
Toolkit
Component:
Places
Type:
defect

Tracking

()

Status:
RESOLVED WORKSFORME

People

(Reporter: standard8, Unassigned)

Details

(Whiteboard: [fxsearch])

STR On a fresh profile: 1) Visit a site through an insecure entry into the urlbar, e.g. enter "www.plus.net" => Wait for page to load, this redirects to https://www.plus.net 2) Restart the browser (or close the tab). 3) Visit the secure version of the site, e.g. enter "https://www.plus.net" 4) Restart the browser (or close the tab). 5) Start to enter the hostname again, e.g. "www.plus" or "plus" Expected Results The visit autofill entry should show "https://www.plus.net" Actual Results The visit autofill entry shows "www.plus.net" (insecure version). Marco believes that we should be getting the expected results.
This is bad from a security and privacy point of view.
Priority: -- → P2
Mark, I think your recent patch improved or fixed this?
Flags: needinfo?(standard8)
Yes, I think this is WFM, there's a possible slight improvement, but lets leave that to bug 1239708.
Status: NEW → RESOLVED
Closed: 8 years ago
Flags: needinfo?(standard8)
Resolution: --- → WORKSFORME
You need to log in before you can comment on or make changes to this bug.