Closed
Bug 1480131
Opened 6 years ago
Closed 6 years ago
AntiTrackingCommon::IsFirstPartyStorageAccessGrantFor() should not grant permission to sub-sub-iframe channels
Categories
(Core :: DOM: Security, defect, P2)
Core
DOM: Security
Tracking
()
RESOLVED
FIXED
People
(Reporter: baku, Assigned: baku)
References
(Blocks 1 open bug)
Details
(Whiteboard: [domsecurity-backlog1] [domsecurity-active])
Attachments
(1 file, 1 obsolete file)
16.39 KB,
patch
|
ehsan.akhgari
:
review+
|
Details | Diff | Splinter Review |
In this bug I want to add a topLevelPrincipal attribute in nsILoadInfo. This will be useful here, but also, in the merging of network.cookie.cookieBehavior and privacy_restrict3rdpartystorage_enabled pref.
Assignee | ||
Comment 1•6 years ago
|
||
This patch is for Ehsan, when he is back from PTO.
Assignee | ||
Comment 2•6 years ago
|
||
Attachment #8996743 -
Attachment is obsolete: true
Updated•6 years ago
|
Priority: -- → P2
Assignee | ||
Updated•6 years ago
|
Status: NEW → ASSIGNED
Component: DOM → DOM: Security
Whiteboard: [domsecurity-backlog1] [domsecurity-active]
Assignee | ||
Updated•6 years ago
|
Assignee | ||
Updated•6 years ago
|
Attachment #8997080 -
Flags: review?(ehsan)
Updated•6 years ago
|
Attachment #8997080 -
Flags: review?(ehsan) → review+
Pushed by eakhgari@mozilla.com: https://hg.mozilla.org/integration/mozilla-inbound/rev/6dfec7088c60 AntiTrackingCommon::IsFirstPartyStorageAccessGrantFor() should not grant permission to sub-sub-iframe channels; r=ehsan
Comment 5•6 years ago
|
||
bugherder |
https://hg.mozilla.org/mozilla-central/rev/6dfec7088c60
Comment 6•6 years ago
|
||
Are you planning to write a test for this, Andrea? Thanks!
Flags: needinfo?(amarchesini)
Assignee | ||
Comment 7•6 years ago
|
||
I already did here: https://hg.mozilla.org/integration/mozilla-inbound/file/tip/dom/serviceworkers/test/browser_antitracking_subiframes.js this test creates 2 nested iframes. The first one is controlled, the nested one is not. The 'antitracking' in the name is misleading: there are no trackers involved in that test.
Status: ASSIGNED → RESOLVED
Closed: 6 years ago
Flags: needinfo?(amarchesini)
Resolution: --- → FIXED
Updated•6 years ago
|
Keywords: leave-open
Comment 8•6 years ago
|
||
Thanks, great, sorry I didn't see that test!
You need to log in
before you can comment on or make changes to this bug.
Description
•