mirror of
https://github.com/mozilla/gecko-dev.git
synced 2024-10-27 04:05:32 +00:00
f38368c9cc
"Nonsecure HTTP" here just means regular, not-HTTPS HTTP. It doesn't mean HTTPS without the `Secure` cookie flag. Honor the expiration time of third-party cookies set over HTTPS, whether or not they have the `Secure` cookie flag. If a third-party cookie is set over HTTPS and then later sent in nonsecure HTTP request (which is allowed for cookies without the `Secure` cookie flag), the cookie won't be turned into a session cookie unless the nonsecure HTTP response sets a new cookie value. This feature is controlled by the pref "network.cookie.thirdparty.nonsecureSessionOnly". MozReview-Commit-ID: HlCg21JyvNC --HG-- rename : extensions/cookie/test/unit/test_cookies_thirdparty_session.js => extensions/cookie/test/unit/test_cookies_thirdparty_nonsecure_session.js extra : source : d1be2e4265201efd3ee93e965ac68561f548fd05 extra : intermediate-source : f5b382fa1b70e30a907b1f10d74f8c0c6dff344e |
||
|---|---|---|
| .. | ||
| brotli | ||
| fdlibm | ||
| freetype2 | ||
| libbz2 | ||
| libjar | ||
| libmar | ||
| libpref | ||
| pdfium | ||
| woff2 | ||
| xz-embedded | ||
| zlib | ||
| moz.build | ||