Closed Bug 1944993 Opened 7 months ago Closed 5 months ago

Lock icon of error page for empty error response codes doesn't reflect security status

Categories

(Core :: Networking, defect, P2)

Product:
Core
Component:
Networking
Type:
defect
Points:
2

Tracking

()

Status:
RESOLVED FIXED
Milestone:
138 Branch
Tracking Flags:
Tracking Status
firefox138 --- fixed

People

(Reporter: manuel, Assigned: sekim)

References

Details

(Whiteboard: [necko-triaged][necko-priority-queue])

Attachments

(1 file)

Bug 1944993 - Block connection failure message for neterrors without connection error r=#necko
48 bytes, text/x-phabricator-request
Details | Review

Clicking on the lock icon in the url bar. Then on

Connection failure

the text reads:

(i) You are not securely connected to this site.

Your connection to this site is not private. Information you submit could be viewed by others (like passwords, messages, credit cards, etc.).

Which contradicts with information from devtools. The connection security details apparently currently don't propagate to the lock icon for some reason.

Severity: -- → N/A
Priority: -- → P2
Whiteboard: [necko-triaged][necko-priority-next]
Blocks: 1944358

Don't think this bug blocks Bug 1944358 since this is a common message for all neterror/certerror. Perhaps we need a mechanism to introduce different error messages for each error.

No longer blocks: 1944358
Points: --- → 2

The severity field is not set for this bug.
:valentin, could you have a look please?

For more information, please visit BugBot documentation.

Flags: needinfo?(valentin.gosu)

(In reply to Manuel Bucher [:manuel] from comment #0)

Which contradicts with information from devtools. The connection security details apparently currently don't propagate to the lock icon for some reason.

I think previously it made sense for the lock not to be there - the error page appeared when there was a connection error, or cert error.
We now reuse it for a few other use cases like 1325876, where there's no actual error, so the security details would probably be useful to preserve.

Severity: N/A → S3
Flags: needinfo?(valentin.gosu)
Summary: Shield icon of error page for empty error response codes doesn't reflect security status → Lock icon of error page for empty error response codes doesn't reflect security status
Assignee: nobody → sekim
Whiteboard: [necko-triaged][necko-priority-next] → [necko-triaged][necko-priority-queue]
Pushed by sekim@mozilla.com: https://hg.mozilla.org/integration/autoland/rev/a05cfb76d4fb Block connection failure message for neterrors without connection error r=necko-reviewers,valentin

https://hg.mozilla.org/mozilla-central/rev/a05cfb76d4fb

Status: NEW → RESOLVED
Closed: 5 months ago
status-firefox138: --- → fixed
Resolution: --- → FIXED
Target Milestone: --- → 138 Branch
You need to log in before you can comment on or make changes to this bug.

Attachment

General

Creator:
Created:
Updated:
Size: