mirror of
https://github.com/mozilla/gecko-dev.git
synced 2024-10-27 04:05:32 +00:00
f38368c9cc
"Nonsecure HTTP" here just means regular, not-HTTPS HTTP. It doesn't mean HTTPS without the `Secure` cookie flag. Honor the expiration time of third-party cookies set over HTTPS, whether or not they have the `Secure` cookie flag. If a third-party cookie is set over HTTPS and then later sent in nonsecure HTTP request (which is allowed for cookies without the `Secure` cookie flag), the cookie won't be turned into a session cookie unless the nonsecure HTTP response sets a new cookie value. This feature is controlled by the pref "network.cookie.thirdparty.nonsecureSessionOnly". MozReview-Commit-ID: HlCg21JyvNC --HG-- rename : extensions/cookie/test/unit/test_cookies_thirdparty_session.js => extensions/cookie/test/unit/test_cookies_thirdparty_nonsecure_session.js extra : source : d1be2e4265201efd3ee93e965ac68561f548fd05 extra : intermediate-source : f5b382fa1b70e30a907b1f10d74f8c0c6dff344e |
||
---|---|---|
.. | ||
brotli | ||
fdlibm | ||
freetype2 | ||
libbz2 | ||
libjar | ||
libmar | ||
libpref | ||
pdfium | ||
woff2 | ||
xz-embedded | ||
zlib | ||
moz.build |