Document::RequestStorageAccess should use a new site-site scoped permission
Categories
(Core :: Privacy: Anti-Tracking, enhancement, P2)
Tracking
()
Tracking | Status | |
---|---|---|
firefox116 | --- | fixed |
People
(Reporter: bvandersloot, Assigned: bvandersloot)
References
(Blocks 1 open bug)
Details
Attachments
(5 files)
This permission should be similar to the 3rdPartyStorage^ permission, but have slightly different semantics. We need to keep around the old one for requestStorageAccessFor.
- the thing after the "^" should be a site, not origin
- it only applies to iframes, not the top-level
We should fold this into the existing StorageAccessPermissionRequest and StorageAccessPermissionPrompt using request options and handling any ugliness there. 3rdPartyStorage^ permission is strictly stronger, so we can treat that like having both permissions. This can be done inside of those classes' behavior.
This also requires a little extension of the GeckoView to not break requestStorageAccess calls in Android.
Alternative to Bug 1835895, Bug 1835896, and Bug 1835908
Assignee | ||
Updated•1 year ago
|
Assignee | ||
Updated•1 year ago
|
Assignee | ||
Comment 1•1 year ago
|
||
Assignee | ||
Comment 2•1 year ago
|
||
Depends on D180215
Assignee | ||
Comment 3•1 year ago
|
||
Depends on D180216
Assignee | ||
Comment 4•1 year ago
|
||
Depends on D180217
Updated•1 year ago
|
Updated•1 year ago
|
Updated•1 year ago
|
Updated•1 year ago
|
Assignee | ||
Comment 5•1 year ago
|
||
Depends on D180218
Comment 7•1 year ago
|
||
bugherder |
https://hg.mozilla.org/mozilla-central/rev/10c928636a22
https://hg.mozilla.org/mozilla-central/rev/51493ddc8b4f
https://hg.mozilla.org/mozilla-central/rev/683d1cdc0e5f
https://hg.mozilla.org/mozilla-central/rev/79cbd089410c
https://hg.mozilla.org/mozilla-central/rev/f7e8a47d6ca5
Assignee | ||
Updated•1 year ago
|
Description
•