Closed Bug 1672344 Opened 4 years ago Closed 3 years ago

Add telemetry for measuring usage of external protocol navigations initiated by third-party iframes

Categories

(Firefox :: Security, task, P1)

task

Tracking

()

RESOLVED FIXED
85 Branch
Tracking Status
firefox85 --- fixed

People

(Reporter: johannh, Assigned: pbz)

References

Details

Attachments

(2 files)

In order to understand how to properly handle external protocol navigations in iframes, it would be useful to have some telemetry around how much they actually occur.

Paul, would you like to look into that?

Flags: needinfo?(pbz)

I'm confused - I thought I answered questions around this in some of the other linked bugs, cf. bug 1606484 comment 34. Specifically, I think all the dupes of bug 1650162 mean we can't really do much to break this. Microsoft Teams, Steam, GoToMeeting, Roblox, and all kinds of other places use the "load the external protocol link into an iframe" technique - probably significantly more given that that bug only broke the ones where the iframe was not connected to the document, or where it was hidden...

Ah, right, I wasn't really aware of those :)

Do we still want to have the raw numbers on it or should we close this bug? Maybe Paul has an opinion...

I agree, if 3rd party external protocol navigations are so popular, we can't break them. If we only wanted the telemetry for checking if we can block these navigations, we can probably close the bug.
Other than that, deciding whether we want to integrate with permission policy shouldn't really depend on the usage stats?

Flags: needinfo?(pbz)

I think if we want to use Permissions Policy, the default should be that it's disabled in a third party. It also seems that per Gijs' comments elsewhere, there might have been a misunderstanding and those sites are not using a cross-origin frame to navigate (from the perspective of the top-level document), but rather a same-origin frame (i.e., one with initial about:blank)?

Flags: needinfo?(gijskruitbosch+bugs)

(In reply to Anne (:annevk) from comment #4)

I think if we want to use Permissions Policy, the default should be that it's disabled in a third party. It also seems that per Gijs' comments elsewhere, there might have been a misunderstanding and those sites are not using a cross-origin frame to navigate (from the perspective of the top-level document), but rather a same-origin frame (i.e., one with initial about:blank)?

Yeah, comment #0 doesn't mention third party iframes, and the previous summary doesn't mention "iframe", so I just read "third-party external protocol" as "protocol implemented by a third party". :-\

Flags: needinfo?(gijskruitbosch+bugs)
Summary: Add telemetry for measuring usage of third-party external protocol navigations → Add telemetry for measuring usage of external protocol navigations initiated by third-party iframes

So it would be good to have this Telemetry :)

Flags: needinfo?(pbz)
Assignee: nobody → pbz
Flags: needinfo?(pbz)
Blocks: 1675046
Attached file data-review-request.md
Attachment #9187483 - Flags: data-review?(tdsmith)

Comment on attachment 9187483 [details]
data-review-request.md

Thanks!

  1. Is there or will there be documentation that describes the schema for the ultimate data set in a public, complete, and accurate way?

Yes, in the probe definition files and the Probe Dictionary.

  1. Is there a control mechanism that allows the user to turn the data collection on and off?

Yes, the Firefox telemetry opt-out.

  1. If the request is for permanent data collection, is there someone who will monitor the data over time?

n/a

  1. Using the category system of data types on the Mozilla wiki, what collection type of data do the requested measurements fall under?

Category 2, interaction data.

  1. Is the data collection request for default-on or default-off?

Default-on.

  1. Does the instrumentation include the addition of any new identifiers (whether anonymous or otherwise; e.g., username, random IDs, etc. See the appendix for more details)?

No.

  1. Is the data collection covered by the existing Firefox privacy notice?

Yes.

  1. Does there need to be a check-in in the future to determine whether to renew the data?

pbz will decide to renew the collection as necessary.

  1. Does the data collection use a third-party collection tool?

No.

Attachment #9187483 - Flags: data-review?(tdsmith) → data-review+
Pushed by pzuhlcke@mozilla.com:
https://hg.mozilla.org/integration/autoland/rev/6fe2e921692a
Added telemetry for measuring usage of external protocol navigations by iframes. r=johannh
Pushed by pzuhlcke@mozilla.com:
https://hg.mozilla.org/integration/autoland/rev/bdb198051288
Added telemetry for measuring usage of external protocol navigations by iframes. r=johannh

Windows builds failed because the enum the telemetry code generated used WINDOWS which seems to be a reserved keyword. I've renamed the label.

Flags: needinfo?(pbz)
Status: NEW → RESOLVED
Closed: 3 years ago
Resolution: --- → FIXED
Target Milestone: --- → 85 Branch
Blocks: 1681171
See Also: → 1683103
See Also: → 1723138
Blocks: 1736688
You need to log in before you can comment on or make changes to this bug.

Attachment

General

Created:
Updated:
Size: