Closed
Bug 856529
Opened 13 years ago
Closed 11 years ago
[Buri][Shira-48095]Browser does not provide a mechanism to see SSL certificate details
Categories
(Firefox OS Graveyard :: Gaia::Browser, defect, P1)
Tracking
(Not tracked)
RESOLVED
DUPLICATE
of bug 1015224
People
(Reporter: sync-1, Unassigned)
References
Details
(Keywords: feature, productwanted, uiwanted, Whiteboard: Poland, IOT, Buri)
AU_LINUX_GECKO_ICS_STRAWBERRY_V1.01.00.01.19.044
Firefox os v1.0.1
Mozilla build ID: 20130319070203
+++ This bug was initially created as a clone of Bug #431463 +++
DEFECT DESCRIPTION:
[TMO-48095]Browser does not provide a mechanism to see SSL certificate details
REPRODUCING PROCEDURES:
1.connect to VAL-TEST or enable data connection of 2G china mobile sim card.
2.goto http://wapmail.tcl-ta.com/http/wa503.php
3.click New TLS Session、Server Certificate、Server Certificate Expired、Client Certificate one by one, the browser shows "The address isn't valid"---KO
4.On refernce phone Telsa orange, can view SSL certificate successfully, refer to screenshot1.
EXPECTED BEHAVIOUR:
The browser provide a mechanism to see SSL certificate details,in addtion, the browser provide a list of on the device installed certificates.
ASSOCIATE SPECIFICATION:
DT's description:
There is no possibility to view SSL certificate details like fingerprint , CA and more... so the user cannot check whether the correct and according certificate is used or not. Simply a lock symbol is not enough given the fact that SSL certificate might get compromitted as well (remember DigiNotar's certificates).
In addition, the browser does not provide a list of on the device installed certificates (ideally these can be uninstalled by the user).
TEST PLAN REFERENCE:
TOOLS AND PLATFORMS USED:
USER IMPACT:
REPRODUCING RATE:5/5
For FT PR, Please list reference mobile's behavior:
++++++++++ end of initial bug #431463 description ++++++++++
CONTACT INFO (Name,Phone number):
DEFECT DESCRIPTION:
REPRODUCING PROCEDURES:
EXPECTED BEHAVIOUR:
ASSOCIATE SPECIFICATION:
TEST PLAN REFERENCE:
TOOLS AND PLATFORMS USED:
USER IMPACT:
REPRODUCING RATE:
For FT PR, Please list reference mobile's behavior:
|
||
Updated•13 years ago
|
Summary: [Buri][TMO-48095]Browser does not provide a mechanism to see SSL certificate details → [Buri][Shira-48095]Browser does not provide a mechanism to see SSL certificate details
|
||
Comment 1•13 years ago
|
||
This looks like a feature request. NEEDINFO on product to confirm this feature isn't scheduled for v1.0.1 or v1.1.0
Flags: needinfo?(ffos-product)
|
||
Updated•13 years ago
|
Status: NEW → RESOLVED
Closed: 13 years ago
Resolution: --- → DUPLICATE
|
|
||
Updated•13 years ago
|
blocking-b2g: tef? → ---
Flags: needinfo?(ladamski)
Flags: needinfo?(ffos-product)
|
|
||
Comment 4•13 years ago
|
||
the duplicated I have marked above is in scope for 1.1. See also bug 825092.
Based on that I would assume this is tef-, but I'll prefer firefox OS team to make the final call here.
blocking-b2g: --- → tef?
|
|
||
Updated•13 years ago
|
blocking-b2g: tef? → ---
|
|
||
Comment 5•13 years ago
|
||
(In reply to Daniel Coloma:dcoloma from comment #4)
> the duplicated I have marked above is in scope for 1.1. See also bug 825092.
>
> Based on that I would assume this is tef-, but I'll prefer firefox OS team
> to make the final call here.
Yes, this is OOS for v1.01 - sicking made this decision long ago on that bug with a rationale. It's already landed for v1.1, so we are actively working on making this shippable for that release.
|
|
||
Updated•13 years ago
|
Whiteboard: Poland, IOT, Buri
|
|
||
Comment 6•13 years ago
|
||
Is this definitely a duplicate? bug 769178 is about invalid certificate errors, what about valid certificates?
|
|
||
Comment 7•13 years ago
|
||
(In reply to Ben Francis [:benfrancis] from comment #6)
> Is this definitely a duplicate? bug 769178 is about invalid certificate
> errors, what about valid certificates?
The original KO cited above sounds like it's talking about the invalid cert case.
For valid certs, we might want to file a different bug for that.
|
|
||
Updated•13 years ago
|
Priority: -- → P1
|
|
||
Comment 9•12 years ago
|
||
undupe the bug since this bug is really asking for something different.
1.3? to consider this feature in the future release
Status: RESOLVED → REOPENED
blocking-b2g: --- → 1.3?
Resolution: DUPLICATE → ---
|
||
Updated•12 years ago
|
Keywords: productwanted,
uiwanted
|
|
||
Comment 11•12 years ago
|
||
It is on Peter's radar for prioritization post 1.3.
Flags: needinfo?(krudnitski)
|
||
Updated•12 years ago
|
blocking-b2g: 1.3? → -
|
||
Comment 15•12 years ago
|
||
Which version plan to support this feature
|
|
||
Comment 17•12 years ago
|
||
We aren't supporting this for 1.4 - it's not part of the 1.4 QC FC requirements & DSDS requirements.
blocking-b2g: 1.4? → backlog
|
|
||
Comment 18•12 years ago
|
||
Dears,
Set 1.3? per customer requirement, it's blocking issue.
blocking-b2g: backlog → 1.3?
|
|
||
Comment 19•12 years ago
|
||
(In reply to Jack Liu from comment #18)
> Dears,
>
> Set 1.3? per customer requirement, it's blocking issue.
We can't add new features to 1.3 or 1.4.
Flags: needinfo?(pdolanjski)
|
|
||
Comment 20•12 years ago
|
||
(In reply to Jack Liu from comment #18)
> Dears,
>
> Set 1.3? per customer requirement, it's blocking issue.
Per comment 19, not a blocker.
blocking-b2g: 1.3? → backlog
|
|
||
Comment 21•12 years ago
|
||
Same comment as above - feature request, not a blocking issue.
blocking-b2g: 1.4? → backlog
|
|
||
Updated•11 years ago
|
Status: REOPENED → RESOLVED
blocking-b2g: backlog → ---
Closed: 13 years ago → 11 years ago
Flags: needinfo?(pdolanjski)
Resolution: --- → DUPLICATE
You need to log in
before you can comment on or make changes to this bug.
Description
•