On 10/03/2015 17:01, Fabrice Desré wrote:
On 03/10/2015 03:35 AM, Antonio Manuel Amaya Calvo wrote:
From a security point of view, I think the cookie jar model is much
better than having everything on the same pile. Maybe rather than
getting rid of that, or even making it an opt-in feature we could try
and hide the implementation details from the content. So we keep a
cookie jar per origin (instead of per-app as we do know, which is really
the same since we can only have one app per origin) and every time that
Nit: we currently support multiple apps per origin - the app identifier
is the manifest url.
Hmm for packaged we cannot as the origin 'host' doubles as the directory
were the packaged is installed. And for hosted it used to not work,
didn't knew we had changed that. In fact the test store we use
internally is hosted and I remember having to install it from a fake
origin or it didn't let me install more apps from that origin. Good to
know that's not the case anymore :)
Fabrice
________________________________
Este mensaje y sus adjuntos se dirigen exclusivamente a su destinatario, puede
contener información privilegiada o confidencial y es para uso exclusivo de la
persona o entidad de destino. Si no es usted. el destinatario indicado, queda
notificado de que la lectura, utilización, divulgación y/o copia sin
autorización puede estar prohibida en virtud de la legislación vigente. Si ha
recibido este mensaje por error, le rogamos que nos lo comunique inmediatamente
por esta misma vía y proceda a su destrucción.
The information contained in this transmission is privileged and confidential
information intended only for the use of the individual or entity named above.
If the reader of this message is not the intended recipient, you are hereby
notified that any dissemination, distribution or copying of this communication
is strictly prohibited. If you have received this transmission in error, do not
read it. Please immediately reply to the sender that you have received this
communication in error and then delete it.
Esta mensagem e seus anexos se dirigem exclusivamente ao seu destinatário, pode
conter informação privilegiada ou confidencial e é para uso exclusivo da pessoa
ou entidade de destino. Se não é vossa senhoria o destinatário indicado, fica
notificado de que a leitura, utilização, divulgação e/ou cópia sem autorização
pode estar proibida em virtude da legislação vigente. Se recebeu esta mensagem
por erro, rogamos-lhe que nos o comunique imediatamente por esta mesma via e
proceda a sua destruição
_______________________________________________
dev-b2g mailing list
dev-b2g@lists.mozilla.org
https://lists.mozilla.org/listinfo/dev-b2g
