When the attachment <iframe> encounters an error, the error page disagrees with the sandboxing.

NEW
Unassigned

Status

()

bugzilla.mozilla.org
General
4 months ago
4 months ago

People

(Reporter: atoll, Unassigned)

Tracking

Production

Details

Attachments

(1 attachment)

(Reporter)

Description

4 months ago
Created attachment 8892236 [details]
Screen Shot 2017-07-31 at 17.03.16.png

As discovered in bug 1386088, if the attachment iframe encounters an error while loading, the error page may attempt to load JS and fonts, which are prohibited by the iframe's sandbox.

Please evaluate whether attachment.cgi is returning the appropriate error page for this context. For instance, what happens if I try to Login within the iframe, since it asks me to?

(The yellow arrow in the screenshot is for a separate bug and can be safely ignored.)
You need to log in before you can comment on or make changes to this bug.