2012/3/16 Jonas Sicking <[email protected]>: >> * Parent frame belongs to an untrusted app with no privileges. It opens a >> child frame with a trusted app in it. Let's say the child frame performs a >> privileged action as soon as it is opened, using a permanently-granted >> permission. The untrusted parent frame has now caused some action to occur >> without the user realizing it. > > I don't think we should allow trusted apps to be framed. I.e. if an > app opens a url which belongs to a trusted app in an iframe, that url > should run with no special permissions at all. Prompt or no prompt.
jonas: it's not clear as to whether ben is referring to chrome frames, iframes or what kind of frames. i created a specific section which requests some clarification so that these things can be discussed unambiguously and non-laboriously. i _would_ write those definitions but a) i am an outsider b) i've already not known because of being an outsider what the difference between a gaia app is and a B2G app c) i actually might not really know what the true phrase is when *i* say "chrome frames" and i've seen queries (24 hrs ago) where even people with @mozilla.com email addresses didn't know either. this is complex as hell and we all really really really need to be on the same page: that means having accurate definitions, linked to long descriptions if they're needed. l. _______________________________________________ dev-security mailing list [email protected] https://lists.mozilla.org/listinfo/dev-security
