Closed Bug 1480131 Opened Last year Closed 11 months ago
Tracking Common::Is First Party Storage Access Grant For() should not grant permission to sub-sub-iframe channels
In this bug I want to add a topLevelPrincipal attribute in nsILoadInfo. This will be useful here, but also, in the merging of network.cookie.cookieBehavior and privacy_restrict3rdpartystorage_enabled pref.
This patch is for Ehsan, when he is back from PTO.
Status: NEW → ASSIGNED
Component: DOM → DOM: Security
Whiteboard: [domsecurity-backlog1] [domsecurity-active]
This also needs a test...
Pushed by firstname.lastname@example.org: https://hg.mozilla.org/integration/mozilla-inbound/rev/6dfec7088c60 AntiTrackingCommon::IsFirstPartyStorageAccessGrantFor() should not grant permission to sub-sub-iframe channels; r=ehsan
Are you planning to write a test for this, Andrea? Thanks!
I already did here: https://hg.mozilla.org/integration/mozilla-inbound/file/tip/dom/serviceworkers/test/browser_antitracking_subiframes.js this test creates 2 nested iframes. The first one is controlled, the nested one is not. The 'antitracking' in the name is misleading: there are no trackers involved in that test.
Status: ASSIGNED → RESOLVED
Closed: 11 months ago
Resolution: --- → FIXED
Thanks, great, sorry I didn't see that test!
You need to log in before you can comment on or make changes to this bug.