Closed Bug 1423587 Opened 6 years ago Closed 3 years ago

PWA with expired security certificate should open in browser


(Firefox for Android Graveyard :: Web Apps (PWAs), defect)

Firefox 59
Not set


(firefox59 fixed)

Firefox 59
Tracking Status
firefox59 --- fixed


(Reporter: ohorvath, Assigned: cnevinchen)



(Whiteboard: [FNC][SPT59.5][BL])


(1 file)

Build: Nightly 59.0a1 (2017-12-05);

Steps to reproduce:
1. Add to the homescreen as a PWA. Close the PWA.
2. Set the device date to 2020.
3. Launch the PWA from the homescreen.

Expected result:
Open the page in the browser, without opening the PWA.

Actual result:
Opening the PWA after the certificate expires, a blank PWA is opened in the background and an unsecure connection error page is opened in Nightly. 

note: Chrome only opens the error page in the browser without launching the web app.
Scenario #2:

Please configure a test website as follows:
1. with manifest file reference in source.
2. Manifest file defines view mode of standalone/fullscreen, and points to start_url at
3. points to some image served over http, breaking the https label.

1. User goes to and taps badge; is installed as starting point for the PWA.
2. User launches PWA

Expected result: should not be opened in standalone/fullscreen, but in the browser instead.
GeckoSession exposes the security state via GeckoSession.ProgressListener.onSecurityChange(). The PWA app could abort the load as soon as it sees that the certificate is broken and open the page in Fennec.

-> nevin
Flags: needinfo?(cnevinchen)
Please help prioritize
Flags: needinfo?(cnevinchen) → needinfo?(wehuang)
keep the ni so I won't forget
Flags: needinfo?(cnevinchen)
as discussed I added it to 59.5 Sprint planning.
Flags: needinfo?(wehuang)
Comment on attachment 8940421 [details]
Bug 1423587 - PWA with expired security certificate should open in browser.
Attachment #8940421 - Flags: review?(max) → review+
Whiteboard: [FNC][SPT59.5][BL]
Assignee: nobody → cnevinchen
Flags: needinfo?(cnevinchen)
Pushed by
PWA with expired security certificate should open in browser. r=maliu
Closed: 6 years ago
Resolution: --- → FIXED
Target Milestone: --- → Firefox 59
Verified this on Nightly 59 (2018-01-14) and the issue is still reproducing with the same STR.
Additionally, if the homepage of the PWA contains mixed content (e.g., then the page opens in the browser twice. Selecting the PWA task that is still in the background re-opens again 2 pages. (Note: this happens without changing the system's date.)
Resolution: FIXED → ---
I though the only issue left is the original WebAppActivity is still opened after Fennec is launched?
If that's the case I'll create a new bug for the follow up.
Flags: needinfo?(oana.horvath)
Follow up bug: Bug 1430731
Depends on: 1430731
Flags: needinfo?(oana.horvath)
We have completed our launch of our new Firefox on Android. The development of the new versions use GitHub for issue tracking. If the bug report still reproduces in a current version of [Firefox on Android nightly]( an issue can be reported at the [Fenix GitHub project]( If you want to discuss your report please use [Mozilla's chat]( server and join the [#fenix]( channel.
Closed: 6 years ago3 years ago
Resolution: --- → INCOMPLETE
Product: Firefox for Android → Firefox for Android Graveyard
You need to log in before you can comment on or make changes to this bug.