Open Bug 1726742 Opened 3 years ago Updated 2 years ago

AuthTokensCleaner support for clearing by principal and baseDomain

Tracking

()

Status:

NEW

People

(Reporter: pbz, Unassigned)

References

(Blocks 1 open bug)

Details

Paul Zühlcke [:pbz]

Reporter

Description

•

3 years ago

The auth tokens cleaner can not clear data for a specific principal or baseDomain and thus over-clears for these cases:
https://searchfox.org/mozilla-central/rev/12770bd668c0a6bdaa8eb96ad9507c6febe8d23d/toolkit/components/cleardata/ClearDataService.jsm#948,952

We should investigate if we can support deleteByPrincipal and deleteByBaseDomain.

Paul Zühlcke [:pbz]

Reporter

Updated

•

3 years ago

Comment 1

•

3 years ago

This may not be possible for the primary password, since the auth state isn't bound to a site. In this case we should only clear the authed state if the user requests it.

Paul Zühlcke [:pbz]

Reporter

Updated

•

3 years ago

Blocks: 1727141

Paul Zühlcke [:pbz]

Reporter

Updated

•

3 years ago

No longer blocks: 1727141

Paul Zühlcke [:pbz]

Reporter

Updated

•

2 years ago

Severity: -- → S3

Priority: -- → P3

You need to log in before you can comment on or make changes to this bug.

Bugzilla

Quick Search

AuthTokensCleaner support for clearing by principal and baseDomain

Categories

(Toolkit :: Data Sanitization, enhancement, P3)

Tracking

()

People

(Reporter: pbz, Unassigned)

References

(Blocks 1 open bug)

Details

Crash Data

Security

(public)

User Story

Description

Updated

Comment 1

Updated

Updated

Updated