Closed
Bug 818583
Opened 12 years ago
Closed 12 years ago
Permissions Installer - states that a privileged app can access device-storage:apps via PROMPT_ACTION, but permissions matrix states it should be DENY_ACTION
Categories
(Firefox OS Graveyard :: General, defect, P1)
Tracking
(blocking-basecamp:+, firefox18 fixed, firefox19 fixed, firefox20 fixed, b2g18 fixed)
People
(Reporter: jsmith, Assigned: gwagner)
References
Details
(Whiteboard: [qa-])
Attachments
(2 files)
The permissions installer states the following about device-storage:apps:
74 "device-storage:apps": {
75 app: DENY_ACTION,
76 privileged: PROMPT_ACTION,
77 certified: ALLOW_ACTION,
78 access: ["read", "write", "create"]
79 },
However, the permissions matrix says it should be DENY_ACTION for a privileged app.
|
Reporter | |
Updated•12 years ago
|
Blocks: finalize-permissions
|
|
Reporter | |
Updated•12 years ago
|
blocking-basecamp: --- → ?
|
|
Reporter | |
Comment 1•12 years ago
|
||
Same comment as the others: - If doc is wrong - minus and state to update doc - If code is wrong, let's + and fix this
|
|
Reporter | |
Comment 2•12 years ago
|
||
Spoke with Gregor in IRC - all of them going his way to resolve the contention.
Assignee: nobody → anygregor
|
||
Updated•12 years ago
|
blocking-basecamp: ? → +
|
||
Comment 3•12 years ago
|
||
I believe this permission allows access to the entire apps directory, right? If so we should definitely fix the code to match the perms matrix.
|
||
Updated•12 years ago
|
Priority: -- → P1
There are two changes needed here: privileged should be DENY_ACTION and the access property should just be ["read"]
|
Assignee | |
Comment 5•12 years ago
|
||
Attachment #689400 -
Flags: review?(jonas)
|
|
Assignee | |
Comment 6•12 years ago
|
||
Attachment #689402 -
Flags: review?(jonas)
Attachment #689402 -
Flags: review?(jonas) → review+
Attachment #689400 -
Flags: review?(jonas) → review+
|
|
Assignee | |
Comment 7•12 years ago
|
||
https://github.com/mozilla-b2g/gaia/commit/69bbfcf06bfe6b8c19567f711ef84e2109b8f0f6
|
|
Assignee | |
Comment 8•12 years ago
|
||
https://hg.mozilla.org/integration/mozilla-inbound/rev/ef0d9ad6a17d
|
|
Assignee | |
Comment 9•12 years ago
|
||
Fix tests: https://hg.mozilla.org/integration/mozilla-inbound/rev/01654665475b
|
||
Comment 10•12 years ago
|
||
https://hg.mozilla.org/mozilla-central/rev/ef0d9ad6a17d https://hg.mozilla.org/mozilla-central/rev/01654665475b
Status: NEW → RESOLVED
Closed: 12 years ago
Resolution: --- → FIXED
|
|
Reporter | |
Updated•12 years ago
|
Whiteboard: [qa-]
|
||
Comment 11•12 years ago
|
||
https://hg.mozilla.org/releases/mozilla-aurora/rev/165fef5b307d https://hg.mozilla.org/releases/mozilla-aurora/rev/332922a0d40c https://hg.mozilla.org/releases/mozilla-beta/rev/f38ec49d0117 https://hg.mozilla.org/releases/mozilla-beta/rev/2415b272e69a
status-firefox18:
--- → fixed
status-firefox19:
--- → fixed
status-firefox20:
--- → fixed
Target Milestone: --- → B2G C2 (20nov-10dec)
|
|
||
Updated•12 years ago
|
Whiteboard: [qa-] → [qa-][status-b2g18:fixed]
|
|
||
Updated•12 years ago
|
status-b2g18:
--- → fixed
Whiteboard: [qa-][status-b2g18:fixed] → [qa-]
|
||
Updated•11 years ago
|
Attachment mime type: text/plain → text/x-github-pull-request
You need to log in
before you can comment on or make changes to this bug.
Description
•