Isolate indexedDB by OriginAttributes

RESOLVED INVALID

Status

()

enhancement
P3
normal
RESOLVED INVALID
2 years ago
Last year

People

(Reporter: arthur, Unassigned)

Tracking

(Blocks 1 bug)

Firefox Tracking Flags

(Not tracked)

Details

(Whiteboard: [tor])

Reporter

Description

2 years ago
indexedDB is a supercookie vector. We should isolate it by origin attributes. (Currently, Tor Browser disables indexedDB, but in the future, we would like to support a memory-only, clearable, first-party isolated indexedDB.)
Priority: -- → P3

Comment 1

2 years ago
IDB is already isolated. Open a nilla profile, set FPI=true, visit YT and watch ~/profile/storage/default entries like: https+++www.youtube.com^firstPartyDomain=youtube.com

Or am I missing something here?

> we would like to support a memory-only, clearable, first-party isolated indexedDB

that excludes `moz-extension+++`* entries - FTFY
I confirm. IndexedDB uses QuotaManager, and QuotaManager supports OriginAttributes.
Status: NEW → RESOLVED
Closed: 2 years ago
Resolution: --- → INVALID
Reporter

Comment 3

2 years ago
That's great! Sorry for not realizing this already.

Comment 4

2 years ago
Yes, it's isolated.

Comment 5

Last year
(In reply to Andrea Marchesini [:baku] from comment #2)
> I confirm. IndexedDB uses QuotaManager, and QuotaManager supports
> OriginAttributes.

For reference, this got done in bug 1278037 I believe.
You need to log in before you can comment on or make changes to this bug.