Closed Bug 805136 Opened 7 years ago Closed 7 years ago
Mixed Content Blocker doesn't block redirects from https -> http
And I believe it should. Hard to say how to implement this in an elegant way.
Looks like we should get call to ShouldLoad from CSPService::AsyncOnChannelRedirect to be able to veto the new channel load but that method fails to get nsIChannelPolicy from the old channel's property... Could that be a bug?
Status: NEW → RESOLVED
Closed: 7 years ago
Resolution: --- → DUPLICATE
Duplicate of bug: 418354
You need to log in before you can comment on or make changes to this bug.