c7c7bd4f51
Bug 1308640 bypass TP when addon has explicit permission to url, r=bz,kmag,mrbkap
...
MozReview-Commit-ID: BIhoUY2Ug8k
--HG--
extra : rebase_source : 29cc48becfa958ba8f50d254fa6f30fd1820aef9
2017-02-09 21:08:06 -08:00
c280ee0009
Bug 1259348 part 1: Remove CSSUnprefixingService.js and associated code (since it's been supplanted by built-in webkit-prefixed-CSS support). r=mats
...
MozReview-Commit-ID: CXCJJWhHc8G
--HG--
extra : rebase_source : a09745ce568c9afde78065d9e837da958e7b252e
2017-02-03 14:56:13 -08:00
4e31b183a6
Bug 1319773 - Part 2: Add a pref 'privacy.firstparty.isolate.restrict_opener_access' which controls the access of window.opener for different first party domain. r=baku
...
--HG--
extra : rebase_source : 052dfb3554ba050af85247bcf2587ade26710aac
2017-01-23 10:50:22 +08:00
3e5d172c95
Bug 1319773 - Part 1: Add a SubsumesConsideringDomainIgnoringFPD in BasePrincipal. r=baku
...
--HG--
extra : rebase_source : db853a600e666cd11a140153536427c1f4e5882c
2017-01-18 20:17:19 +08:00
359ae91eac
Bug 1328653 - Merging all the various *OriginAttributes to just one, r=huseby
2017-01-12 17:38:48 +01:00
bcd217b3c0
Bug 1320402 - Move url-classifier off of using appIds. r=ehsan, gcp
...
MozReview-Commit-ID: IqnAVrv2c9W
2017-01-03 14:21:58 +08:00
2b7e1dceb6
Bug 1324115 - Part 1: add a C++ helper in nsIPrincipal. r=smaug
2016-12-21 14:59:20 +08:00
f7f5990527
Bug 1317927 - Media caching needs to use origin attributes, r=cpearce, r=jesup
2016-12-07 07:07:09 -10:00
d5b0cbe35a
Bug 1315905 - Cleanup Necko http security check - part 1, r=valentin
2016-11-17 14:52:16 +01:00
950b86072e
Bug 1313627 - Get the firstPartyDomain from the nodePrincipal of the document in nsDocShell::CanAccessItem() if the first party isolation is on. r=smaug
2016-11-10 14:20:38 +08:00
656872593e
Bug 1315302 - Remove signedPkg from origin attributes r=baku
...
MozReview-Commit-ID: L1xvRgeO6De
--HG--
extra : rebase_source : dee943054af499b6e3f0aca2801fa9414f5567be
2016-11-06 16:15:36 +01:00
8b10d432c1
Bug 1308920: Part 1 - Add an EqualsIgnoringAddonId method to BasePrincipal. r=bholley
...
This is meant as a temporary stopgap until we can stop using origin attributes
to store add-on IDs.
MozReview-Commit-ID: DHstOTyu7pR
--HG--
extra : rebase_source : adb8fbfaadf6e914b5aa15c2693a35056669506c
2016-11-02 10:04:13 -07:00
ce82855c42
Bug 1189086 - Eliminate nsIPrincipal::jarPrefix. r=dveditz
2016-10-24 13:52:00 +02:00
8a70bfa5fc
Bug 1302047 - Ignore userContextId and firstPartyDomain when matching permissions. r=baku
...
--HG--
extra : rebase_source : da81c21da92810d808ebe865a456cc9d04058ce3
2016-09-20 16:35:21 +08:00
10b437080c
Bug 1260931 - Part 3: Propagate firstPartyDomain. r=smaug
2016-09-06 10:25:58 +08:00
85a594681d
Bug 1260931 - Part 1: add firstPartyDomain. r=smaug
...
Add an origin attribute called 'firstPartyDomain'.
This value will be extracted from the URL bar.
And the purpose of this attribute is used to isolate the data-jars.
Please see the tor documentation.
https://www.torproject.org/projects/torbrowser/design/#identifier-linkability
The idea is like a superset of 'reject third party cookies', but not
only apply for cookies, it also applies to all data-jars like localStorage,
indexedDB and so on.
So basically an iframe will have its own data-jar, and this data-jar is
isolated by the URL from URL bar, for instance, an iframe
https://facebook.com inside https://cnn.com won't share data-jar with
the iframe (https://facebook.com ) in https://bbc.com
2016-09-06 10:25:48 +08:00
60d03b201e
Backed out changeset 935ffd53f193 (bug 1260931) for failing xpcshell test test_packaged_app_service.js. r=backout
2016-09-05 21:16:10 +02:00
c9519f7c29
Backed out changeset b9afda2804fd (bug 1260931)
2016-09-05 21:15:29 +02:00
6cca1d0c54
Bug 1260931 - Part 3: Propagate firstPartyDomain. r=smaug
2016-09-06 01:50:30 +08:00
6c3b62e2fb
Bug 1260931 - Part 1: add firstPartyDomain. r=smaug
...
Add an origin attribute called 'firstPartyDomain'.
This value will be extracted from the URL bar.
And the purpose of this attribute is used to isolate the data-jars.
Please see the tor documentation.
https://www.torproject.org/projects/torbrowser/design/#identifier-linkability
The idea is like a superset of 'reject third party cookies', but not
only apply for cookies, it also applies to all data-jars like localStorage,
indexedDB and so on.
So basically an iframe will have its own data-jar, and this data-jar is
isolated by the URL from URL bar, for instance, an iframe
https://facebook.com inside https://cnn.com won't share data-jar with
the iframe (https://facebook.com ) in https://bbc.com
2016-09-06 01:50:15 +08:00
69ed1a79e4
Bug 1244340 - Part 2: add setOriginAttributes in nsIXMLHttpRequest. r=sicking
...
Add a ChromeOnly method called 'setOriginAttributes' on the XMLHttpRequest,
so that we can override the origin attributes for those XHRs running by XUL
(which will use System Principal).
2016-08-26 18:59:00 +08:00
29b9a17a92
Bug 1295103 - Use MOZ_MUST_USE in OriginAttributes. r=allstars
...
MozReview-Commit-ID: PWUb81L8ya
--HG--
extra : rebase_source : 2bdc7adc7a6b5fd121a4621086fab6f87834dd20
2016-08-15 18:22:44 +08:00
9069fff35f
Bug 1197451 - Add clipboardWrite permission r=billm
...
MozReview-Commit-ID: 6d1mQSVWRPe
--HG--
extra : rebase_source : 2f19bab5c9d6db25c60b2b19c06c7027384a04ca
2016-07-08 17:19:17 -07:00
3585e16752
Bug 1283281 - Remove PB Flag from DOMStorage. r=jdm
2016-06-29 14:01:00 +02:00
af49dba19e
Bug 1195930 - Part 8: Fixed support for origin clearing, reworked internal origin patterns to use OriginAttributesPattern; r=asuth
2016-06-05 21:42:48 +02:00
1d32e86b9c
Bug 1269361 - Add mPrivateBrowsingId to OriginAttributes r=ehsan,jdm
2016-06-02 17:03:11 -04:00
6d36833e42
Bug 1254194: Apply a content security policy to all WebExtension documents. r=gabor
...
MozReview-Commit-ID: HsFFbWdq00b
--HG--
extra : rebase_source : 07e4b6ec8c32f696d5b5987091ffc5ebde2c3061
extra : histedit_source : 20983fe6a9590d7f410276fac248c3d2f711caaa
2016-04-23 20:56:56 -07:00
2a55d065b7
Bug 1238160 - Rename OriginAttributes.mInBrowser and associated methods. r=bz,mayhemer
...
This change renames OriginAttributes.mInBrowser to mInIsolatedMozBrowser and
nsIPrincipal::GetIsInBrowserElement to GetIsInIsolatedMozBrowserElement. Other
methods that pass these values around also have name changes.
Tokens such as "inBrowser" have previously been serialized into cache keys, used
as DB column names, stored in app registries, etc. No changes are made to any
serialization formats. Only runtime method and variable names are updated.
No behavior changes are made in this patch, so some renamed methods may have
nonsensical implementations. These are corrected in subsequent patches
focused on behavior.
MozReview-Commit-ID: 66HfMlsXFLs
2016-03-02 10:35:56 -06:00
fecee7be59
Bug 1224694 - Unify and clean up initialization of CSP (r=sicking)
2016-01-14 13:21:31 -08:00
ccbf22eae8
Backed out changeset f001a01c85d7 (bug 1224694) for browser-chrome bustage on a CLOSED TREE
...
--HG--
extra : commitid : 5BUjoFsY8bv
2016-01-14 08:04:50 +05:30
86457169b6
Bug 1224694 - Unify and clean up initialization of CSP (r=sicking)
2016-01-13 15:51:30 -08:00
4b500464f5
Bug 1209162 - Create OriginAttributes subtypes. IGNORE IDL r=sicking.
2015-11-03 09:50:54 +08:00
b967444f19
Bug 663570 - MetaCSP Part 2: Principal changes (r=bz)
2015-11-14 19:28:23 -08:00
86c97bb3f4
Bug 1218039 - Add a nice interface for both C++ and JS to access the principal kind. r=gabor
2015-10-26 11:18:14 -07:00
dca7589731
Bug 1208756 - Hoist shared CheckMayLoad logic into BasePrincipal. r=bz
...
This is a pure refactoring.
2015-10-02 14:59:45 -07:00
f97211a451
Bug 1167100 - User originAttribute in ContentPrincipalInfo. r=bholley
2015-09-23 18:19:06 +08:00
5e14a3b3a8
Bug 1178533 - Add nsIInstallPackagedWebapp for registering permissions when navigating to signed packages r=bholley,fabrice,valentin
2015-08-26 13:12:13 +02:00
df21b43278
Backed out changeset d0e88c95f3c5 (bug 1167100) for crashes a=backout
2015-09-29 10:25:20 -07:00
872722fe37
Bug 1167100 - User nsIPrincipal.originAttribute in ContentPrincipalInfo. r=bholley
2015-09-23 18:19:06 +08:00
d38b78ae54
Bug 1165466 - Fix up docshell and loadcontext inheriting code in nsIScriptSecurityManager. r=bholley
2015-09-23 16:10:21 +08:00
b6b5862949
Bug 1163254 - Add signedPkg to OriginAttributes. r=bholley
2015-09-18 15:11:58 +08:00
c5551bace9
Backed out 2 changesets (bug 1169633, bug 1163254) for linux Mn-e10s test bustage on a CLOSED TREE
...
Backed out changeset 47ccf6689101 (bug 1169633)
Backed out changeset 503eab197a2d (bug 1163254)
2015-09-17 16:01:25 +02:00
2e884ff477
Bug 1163254 - Add signedPkg to OriginAttributes. r=bholley
2015-09-16 19:42:00 +02:00
754fd36b97
Bug 1179557 - Add getters for userContextId. r=bholley, r=tanvi
...
--HG--
extra : histedit_source : 29a5fb5f2a3204d27d0f620d6f3c03e134699fb9
2015-07-30 14:15:00 -04:00
9d4063da89
Bug 1179557 - Add userContextId to originAttributes with tests. r=bholley, r=tanvi
...
--HG--
extra : histedit_source : 4d033ad9aef7b71c7ebbbe77242c94e9b8e94f0c
2015-07-28 17:32:00 -04:00
b4fdabe37d
Bug 1182347 - Remove nsIPrincipal::cookieJar. r=sicking
2015-07-14 19:56:33 -07:00
8397689ce8
Bug 1182347 - Implement OriginAttributesPattern. r=sicking,f=allstars.chh
2015-07-14 19:56:32 -07:00
260bd0121f
Bug 1180921 - Support custom callbacks for allowing access per-addon load access to cross-origin URIs. r=bz,r=billm
2015-07-11 10:32:56 -04:00
94c6f14615
Bug 1180921 - Add the addonId OriginAttribute. r=bholley
2015-07-11 10:32:55 -04:00
45be9b06a3
Backed out 5 changesets (bug 1180921) for build failures in BasePrincipal.cpp
...
Backed out changeset d8c1a2e11a9a (bug 1180921)
Backed out changeset f4dd8c53df5f (bug 1180921)
Backed out changeset b272a0ebf5d8 (bug 1180921)
Backed out changeset 8e86b6a7d201 (bug 1180921)
Backed out changeset bbdebd7b8881 (bug 1180921)
2015-07-09 17:43:08 -07:00
Shane Caraveo
Daniel Holbert
Tim Huang
Andrea Marchesini
dimi
Yoshi Huang
Valentin Gosu
Kris Maglione
Dave Huseby
Jonathan Hao
Sebastian Hengst
Kan-Ru Chen
Rob Wu
James Andreou
Jan Varga
James Andreou
J. Ryan Stinnett
Christoph Kerschbaumer
Nigel Babu
Bobby Holley
Stephanie Ouillon
Wes Kocher
Henry Chang
Carsten "Tomcat" Book
Steven Englehardt