Open Bug 1577165 (Refactor-nsIPrincipal-API) Opened 2 months ago Updated 13 days ago

[Meta] Do not expose URI on the Principal but provide an API for security questions

Categories

(Core :: DOM: Security, task, P3)

task

Tracking

()

ASSIGNED

People

(Reporter: sstreich, Assigned: sstreich)

References

(Depends on 1 open bug, Blocks 2 open bugs)

Details

(Keywords: meta, Whiteboard: [domsecurity-active])

It's bad practice and error prone that we do principal->getURI() and use that uri for making security decisions.

Assignee: nobody → sstreich

Bug 1402957 probably fits that description.

Depends on: 1402957
Status: NEW → ASSIGNED
Priority: -- → P3
Whiteboard: [domsecurity-active]
Depends on: 1580782
Alias: Refactor-nsIPrincipal-API
Blocks: 1583871
Summary: [Meta] Do not expose URI on the Prinicpal but provide an API for security questions → [Meta] Do not expose URI on the Principal but provide an API for security questions
Blocks: 1583932
Depends on: 1584204
Blocks: 1585297
Blocks: 1585331
Blocks: 1585664
You need to log in before you can comment on or make changes to this bug.