[Webkit-unassigned] [Bug 36615] SecurityOrigin::isUnique() should not block HTML5 LocalStorage or Database access
bugzilla-daemon at webkit.org
bugzilla-daemon at webkit.org
Thu Mar 25 12:07:58 PDT 2010
https://bugs.webkit.org/show_bug.cgi?id=36615
Jeremy Orlow <jorlow at chromium.org> changed:
What |Removed |Added
----------------------------------------------------------------------------
CC| |abarth at webkit.org,
| |fishd at chromium.org
--- Comment #2 from Jeremy Orlow <jorlow at chromium.org> 2010-03-25 12:07:58 PST ---
To be honest, now I'm having second thoughts about this patch. The changes to
the file:// origin policy are partially to protect the user from file:// web
pages accessing content on the hard drive. But I suppose they kind of also
protect you from an app putting sensitive data in there and then another
accessing it. Or simply two apps writing over each other.
Thoughts?
Also, now that I think about it, maybe this patch should also lift the
restriction on cookies if we're lifting database and localstorage.
Thoughts?
--
Configure bugmail: https://bugs.webkit.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.
More information about the webkit-unassigned
mailing list