Closed
Bug 1414164
Opened 7 years ago
Closed 7 years ago
Add Telemetry for Nested Permissions
Categories
(Core :: DOM: Security, enhancement, P3)
Core
DOM: Security
Tracking
()
RESOLVED
DUPLICATE
of bug 1345077
Tracking | Status | |
---|---|---|
firefox58 | --- | affected |
People
(Reporter: tjr, Unassigned)
References
Details
(Whiteboard: [domsecurity-backlog3])
We'd like to understand how often each permission is requested by third party origins, and how often that permission is granted. This situation is quite weird from a user perspective and it's not apparent what you grant in all cases.
Chrome investigated this:
https://docs.google.com/document/d/1iaocsSuVrU11FFzZwy7EnJNOwxhAHMroWSOEERw5hO0/edit
https://noncombatant.github.io/permission-delegation-api/#bib-iframe-permissions-chrome
And found that it was very rare. We could consider disabling this entirely if we found it was very rare. Even if we don't want to disable it, knowing its occurrence will help us decide what to do in First Party Isolation and Resist Fingerprinting modes.
Updated•7 years ago
|
Priority: -- → P3
Whiteboard: [domsecurity-backlog3]
Comment 1•7 years ago
|
||
I'm adding probes for this in bug 1345077 (along with secure origin and handling user input).
I'm not planning to add deny/granted to these prompts, because I don't really see how that information would be useful to us.
Would you like to dupe this bug or keep it open and specialize on getting more info on third party origins (such as deny/grant ratio)?
Flags: needinfo?(tom)
Reporter | ||
Comment 2•7 years ago
|
||
That's great, thanks!
Status: NEW → RESOLVED
Closed: 7 years ago
Flags: needinfo?(tom)
Resolution: --- → DUPLICATE
You need to log in
before you can comment on or make changes to this bug.
Description
•