Issue metadata
Sign in to add a comment
|
Repeated notification permission requests from subdomains in same tab |
||||||||||||||||||||||
Issue descriptionChrome Version: 67.0.3396.99 OS: Linux/Android/... What steps will reproduce the problem? (1) Clear notification permissions for *.kungfoo.net in content settings. (2) Navigate to https://cr.kungfoo.net/click_jacking/permissions/loop.html (3) Click block permissions Some sites are requesting notification permissions in the browser. When the request is denied, They navigate to a new subdomain running the same script, asking for permissions once again, which is a relatively abusive behavior. Please use labels and text to provide additional information. If this is a regression (i.e., worked before), please consider using the bisect tool (https://www.chromium.org/developers/bisect-builds-py) to help us identify the root cause and more rapidly triage the issue. For graphics-related bugs, please copy/paste the contents of the about:gpu page at the end of this report.
,
Jul 6
This just pops up two prompts for me. Is that the PoC WAI? Could you attach a screencast of what you're seeing? Nevertheless, from the sounds of it, I'm not sure there's much we could do about it. Chrome can't tell the difference between multiple domains colluding to the annoy the user and independent domains legitimately asking for permissions.
,
Jul 18
I think Dom was looking at this on Android.
,
Jul 18
Sadly, there's not that much we can do within the browser for this. Our Crowd Consent project was designed to tackle this sort of bad behaviour, but we haven't been able to advance it due to being reorg'd. +notifications team - this is another report on the case we discussed earlier this year of a site redirecting to multiple subdomains when permission isn't granted. |
|||||||||||||||||||||||
►
Sign in to add a comment |
|||||||||||||||||||||||
Comment 1 by pkasting@chromium.org
, Jul 2