Add telemetry to record the type of resource that requests auth
Categories
(Core :: Networking: HTTP, enhancement, P2)
Tracking
()
Tracking | Status | |
---|---|---|
firefox112 | --- | fixed |
People
(Reporter: h.sofie.p, Assigned: h.sofie.p)
References
Details
(Whiteboard: [necko-triaged])
Attachments
(2 files, 1 obsolete file)
48 bytes,
text/x-phabricator-request
|
Details | Review | |
2.74 KB,
text/plain
|
willkg
:
data-review+
|
Details |
As a follow up of Bug 791594 - 401 password prompt spoofing thing we would like to get telemetry on what resources request http authentication, special attention will go to top level requests from a cross domain resource because this will be the case that the patch applies to. Also, subresource cross domain requests are interesting, to see if it would be beneficial to apply the auth spoofing protections to those as well.
Our idea is to enable AUTH_DIALOG_STATS_3 again and adjust it so that it also catches the top level cross domain requests.
Updated•1 year ago
|
Updated•1 year ago
|
Updated•1 year ago
|
Assignee | ||
Comment 1•1 year ago
|
||
Assignee | ||
Comment 2•1 year ago
|
||
Updated•1 year ago
|
Comment 3•1 year ago
|
||
Comment on attachment 9318140 [details]
data_rewiew_request.md
For a renewal, we need the links to the original data review. So I think either someone needs to find links or we need to do a full data review request.
Assignee | ||
Updated•1 year ago
|
Assignee | ||
Updated•1 year ago
|
Assignee | ||
Comment 4•1 year ago
|
||
Assignee | ||
Comment 5•1 year ago
|
||
Thank you, I filled out a request for a full data review now.
Updated•1 year ago
|
Comment 6•1 year ago
|
||
Comment on attachment 9318986 [details]
data_review_request.md
Data Review Form
- Is there or will there be documentation that describes the schema for the ultimate data set in a public, complete, and accurate way?
Yes. The metrics are documented in toolkit/components/telemetry/Histograms.json
.
- Is there a control mechanism that allows the user to turn the data collection on and off?
Standard Telemetry mechanisms.
- If the request is for permanent data collection, is there someone who will monitor the data over time?
N/A
- Using the category system of data types on the Mozilla wiki, what collection type of data do the requested measurements fall under?
Category 1.
- Is the data collection request for default-on or default-off?
Standard Telemetry default-on.
- Does the instrumentation include the addition of any new identifiers (whether anonymous or otherwise; e.g., username, random IDs, etc. See the appendix for more details)?
No.
- Is the data collection covered by the existing Firefox privacy notice?
Yes.
- Does the data collection use a third-party collection tool?
No.
Pushed by hpeuckmann@mozilla.com: https://hg.mozilla.org/integration/autoland/rev/5912bbda2937 record type of 401 request.r=necko-reviewers,pbz,valentin
Comment 8•1 year ago
|
||
Backed out for causing xpcshell failures in netwerk/test/unit/test_auth_dialog_permission.js.
- Backout link
- Push with failures
- Failure Log
- Failure line 1: TEST-UNEXPECTED-FAIL | netwerk/test/unit/test_auth_dialog_permission.js | xpcshell return code: -11
- Failure line 2: PROCESS-CRASH | netwerk/test/unit/test_auth_dialog_permission.js | application crashed [@ RefPtr<mozilla::dom::WindowContext>::get() const]
Pushed by hpeuckmann@mozilla.com: https://hg.mozilla.org/integration/autoland/rev/c3df33bafd47 record type of 401 request.r=necko-reviewers,pbz,valentin
Comment 10•1 year ago
|
||
bugherder |
Assignee | ||
Updated•1 year ago
|
Comment 11•1 year ago
|
||
(In reply to Pulsebot from comment #9)
Pushed by hpeuckmann@mozilla.com:
https://hg.mozilla.org/integration/autoland/rev/c3df33bafd47
record type of 401 request.r=necko-reviewers,pbz,valentin
== Change summary for alert #37539 (as of Mon, 06 Mar 2023 20:51:06 GMT) ==
Improvements:
Ratio | Test | Platform | Options | Absolute values (old vs new) |
---|---|---|---|---|
12% | perf_reftest_singletons style-attr-1.html | windows10-64-shippable-qr | e10s fission stylo webrender | 3.22 -> 2.83 |
For up to date results, see: https://treeherder.mozilla.org/perfherder/alerts?id=37539
Description
•