New issue
Advanced search Search tips
Note: Color blocks (like or ) mean that a user may not be available. Tooltip shows the reason.

Issue 710871 link

Starred by 1 user
Status: Assigned
Owner:
hkamila@chromium.org
Cc:
msramek@chromium.org
raymes@chromium.org
dullweber@chromium.org
Components:
EstimatedDays: ----
NextAction: ----
OS: All
Pri: 3
Type: Bug
Team-Security-UX


Participants' hotlists:
Hotlist-Privacy


Sign in to add a comment

Handle origin-only website settings gracefully

Project Member Reported by msramek@chromium.org, Apr 12 2017 
More features start using website setting to store per-origin data. Unlike with permission-y content settings, they don't need more widely scoped patterns.

This leads to conversions between ContentSettingsPattern and url::Origin (or more commonly GURL), such as:

GURL url = GURL(pattern.ToString());
DCHECK(url.is_valid());

WebsiteSettingsRegistry should offer a way to specify and enforce that a setting is origin-only. HostContentSettingsMap would then provide an interface to handle such settings without knowing about patterns. DCHECK-ing that no wider patterns are used would be done internally.

Comment 1 by msramek@chromium.org, Jul 6 2017

Labels: Hotlist-Privacy

Comment 2 by est...@chromium.org, Nov 10 2017

Labels: Hotlist-EnamelAndFriendsFixIt

Comment 3 by est...@chromium.org, Feb 18 2018

Labels: -Hotlist-EnamelAndFriendsFixIt

Comment 4 by hkamila@chromium.org, Aug 27

Owner: hkamila@chromium.org
Status: Assigned (was: Available)

Comment 5 Deleted

Sign in to add a comment