Closed Bug 1752539 Opened 2 years ago Closed 2 years ago

srcdoc iframes are always treated as third-party

Categories

(Core :: Privacy: Anti-Tracking, defect, P2)

Product:
Core
Component:
Privacy: Anti-Tracking
Type:
defect

Tracking

()

Status:
RESOLVED FIXED
Milestone:
98 Branch
Tracking Flags:
Tracking Status
firefox98 --- fixed

People

(Reporter: bvandersloot, Assigned: bvandersloot)

References

Details

Attachments

(1 file)

Bug 1752539 - srcdoc iframes are always treated as third-party, r?timhuang
48 bytes, text/x-phabricator-request
Details | Review

Srcdoc iframes should have the origin of their container document, per HTML Spec 7.1.1. This would make them first-party when created in the top window. Found this bug when fixing mochitests for dom/base/test/ when enabling dFPI.

Blocks: 1750003
Severity: -- → S2
Priority: -- → P2
  • Add new function to netwerk utils to check for about:srcdoc URIs, mirroring the function for about:blank.
    • When performing check whether or not a Window is third-party, check if the URI is about:srcdoc when you check if the URI is about:blank.
    • When computing whether a channel is third-party to the top window, if the channel's URI is about:srcdoc, use its parent context's origin.
Assignee: nobody → bvandersloot
Status: NEW → ASSIGNED
Pushed by bvandersloot@mozilla.com:
https://hg.mozilla.org/integration/autoland/rev/1425cff22011
srcdoc iframes are always treated as third-party, r=timhuang

https://hg.mozilla.org/mozilla-central/rev/1425cff22011

Status: ASSIGNED → RESOLVED
Closed: 2 years ago
status-firefox98: --- → fixed
Resolution: --- → FIXED
Target Milestone: --- → 98 Branch
You need to log in before you can comment on or make changes to this bug.

Attachment

General

Creator:
Created:
Updated:
Size: