Open Bug 848437 Opened 10 years ago Updated 3 years ago

JSONP should not be broken by new limit_third_party cookie policy

Tracking

()

Status:

NEW

People

(Reporter: geekboy, Unassigned)

References

(Blocks 1 open bug)

Details

Sid Stamm [:geekboy or :sstamm]

Reporter

Description

•

10 years ago

We should try to make sure that JSONP is not broken by this new cookie policy so pre-CORS site implementations continue to work.  (This is related to bug 844622, but not precisely.)

Jonathan Mayer

Comment 1

•

10 years ago

Could you give an example of an adversely affected JSONP flow? As with CORS, I don't follow why there would be a problem.

Jonas Sicking (:sicking) No longer reading bugmail consistently

Comment 2

•

9 years ago

I don't think we should allow using JSONP to work around the new cookie policy. That would open up a loophole that everyone would drive through and the policy would effectively be useless.

François Marier [:francois]

Updated

•

5 years ago

Blocks: 1376049

Marion Daly [:mdaly]

Updated

•

4 years ago

Priority: -- → P5

Nobody; OK to take it and work on it

Assignee

Updated

•

3 years ago

Component: DOM → DOM: Core & HTML

You need to log in before you can comment on or make changes to this bug.

Bugzilla

JSONP should not be broken by new limit_third_party cookie policy

Categories

(Core :: DOM: Core & HTML, defect, P5)

Tracking

()

People

(Reporter: geekboy, Unassigned)

References

(Blocks 1 open bug)

Details

Crash Data

Security

(public)

User Story

Description

Comment 1

Comment 2

Updated

Updated

Updated