Open Bug 1630868 Opened 5 years ago Updated 3 years ago

[meta] Audit GetBaseDomain (eTLD+1) usage

Tracking

()

Status:

NEW

People

(Reporter: annevk, Unassigned)

References

(Depends on 3 open bugs)

Details

(Keywords: meta, Whiteboard: [domsecurity-meta])

Anne (:annevk)

Reporter

Description

•

5 years ago

•

Edited

GetBaseDomain (eTLD+1) is a bad primitive as it completely ignores the scheme of the URL. We should have something akin to GetSite https://html.spec.whatwg.org/#obtain-a-site and use that instead.

Note that when imposing restrictions or removing things, eTLD+1 is likely still the way to go.

(Of course, if any usage can be replaced by an origin/principal that would be even better.)

Anne (:annevk)

Reporter

Updated

•

5 years ago

Depends on: 1630869

BugBot [:suhaib / :marco/ :calixte]

Updated

•

5 years ago

Summary: Audit GetBaseDomain (eTLD+1) usage → [meta] Audit GetBaseDomain (eTLD+1) usage

Christoph Kerschbaumer [:ckerschb}

Updated

•

5 years ago

Priority: -- → P3

Whiteboard: [domsecurity-meta]

Anne (:annevk)

Reporter

Updated

•

5 years ago

Depends on: 1637516

Anne (:annevk)

Reporter

Updated

•

4 years ago

Depends on: 1738883

You need to log in before you can comment on or make changes to this bug.

Bugzilla

[meta] Audit GetBaseDomain (eTLD+1) usage

Categories

(Core :: DOM: Security, task, P3)

Tracking

()

People

(Reporter: annevk, Unassigned)

References

(Depends on 3 open bugs)

Details

(Keywords: meta, Whiteboard: [domsecurity-meta])

Crash Data

Security

(public)

User Story

Description

Updated

Updated

Updated

Updated

Updated