Closed
Bug 1658264
Opened 4 years ago
Closed 4 years ago
Https-Only: Re-Evaluate behavior within Permission Manager for top-level and iframe loads
Categories
(Core :: DOM: Security, task, P1)
Core
DOM: Security
Tracking
()
RESOLVED
FIXED
82 Branch
Tracking | Status | |
---|---|---|
firefox82 | --- | fixed |
People
(Reporter: ckerschb, Assigned: julianwels)
References
(Blocks 1 open bug)
Details
(Whiteboard: [domsecurity-active])
Attachments
(1 file, 1 obsolete file)
We should re-evaluate our behavior for top-level and iframe loads regarding the permission manager. What should happen when a top-level page gets added to the permission manager? Or more precisely, what should happen in case that page gets then loaded within an iframe? And going further, what should happen when we encounter a server side redirect?
We should write tests for all of those cases.
Assignee | ||
Comment 1•4 years ago
|
||
Assignee | ||
Comment 2•4 years ago
|
||
Updated•4 years ago
|
Attachment #9171651 -
Attachment description: Bug 1658264 - In HTTPS-Only Mode, iFrames get treated the same as top-level pages when doing permission-checks. → Bug 1658264 - Fixed issue with HTTPS-Only Mode error-page within iFrames.
Updated•4 years ago
|
Attachment #9173590 -
Attachment is obsolete: true
Pushed by rmaries@mozilla.com: https://hg.mozilla.org/integration/autoland/rev/3cb5394b02cc Fixed issue with HTTPS-Only Mode error-page within iFrames. r=ckerschb
Comment 4•4 years ago
|
||
bugherder |
Status: ASSIGNED → RESOLVED
Closed: 4 years ago
status-firefox82:
--- → fixed
Resolution: --- → FIXED
Target Milestone: --- → 82 Branch
You need to log in
before you can comment on or make changes to this bug.
Description
•