Firefox3.1/PrivateBrowsing/FunctionalSpec: Difference between revisions
Jump to navigation
Jump to search
m (→APIs for Extensions: fix the link) |
|||
| Line 28: | Line 28: | ||
** Ensure any visits recorded after the timestamp are purged (shouldn't be needed, but might be useful as a sanity check). | ** Ensure any visits recorded after the timestamp are purged (shouldn't be needed, but might be useful as a sanity check). | ||
== Cache == | |||
* On entry: | |||
** Disable disk cache, clear memory cache | |||
* During: | |||
** use memory cache only | |||
* Exit: | |||
** Clear memory cache, re-enable disk cache | |||
=== Site Permissions === | === Site Permissions === | ||
| Line 45: | Line 53: | ||
* Downloads will be removed from dlmgr on completion. | * Downloads will be removed from dlmgr on completion. | ||
=== | === Session Store === | ||
* Save session | |||
* On entry: | |||
** Save session, close all tabs, open a blank tab. | |||
* During: | |||
** Do not save any session data to disk, keep undo close tab data in memory. | |||
* On exit: | |||
** Clear all session data in memory, load saved session from disk. | |||
= APIs for Extensions = | = APIs for Extensions = | ||
You can view a draft of the APIs that the extensions will be able to use in order to interact with the private browsing mode [[User:Ehsan/PrivateBrowsingForExtensions|here]]. This page also includes a number of code samples for common tasks. | You can view a draft of the APIs that the extensions will be able to use in order to interact with the private browsing mode [[User:Ehsan/PrivateBrowsingForExtensions|here]]. This page also includes a number of code samples for common tasks. | ||
Revision as of 00:42, 13 September 2008
Main goals
- Ensure that users can't be tracked when doing "private" things. There should be a clear line drawn between your "public" and "private" browsing sessions. It is acceptable to let things touch magnetic storage, as long as the cleanup mechanism is robust enough to clean up.
- It is also acceptable to retain data that users explicitly save (per-site permissions via prefs, bookmarks, etc)
- Non-goal for 3.1: Separate process sharing (some) data. When we get process-per-tab we can make it more IE-like, but doing this also means that we have to have something like their "hey, you're in private browsing mode" banner on the URL bar for all the world to see. Which, to me, is fail.
Specifics
Cookies
- On entry:
- Write cookies to disk, drop the in-memory hashtable.
- During:
- All cookies are only stored in memory.
- Exit:
- Drop the hashtable, reload from disk.
History
- On entry:
- Record timestamp of the last visit recorded.
- During:
- IsVisited always returns false (no link coloring spying)
- AddVisit silently fails.
- Exit:
- Ensure any visits recorded after the timestamp are purged (shouldn't be needed, but might be useful as a sanity check).
Cache
- On entry:
- Disable disk cache, clear memory cache
- During:
- use memory cache only
- Exit:
- Clear memory cache, re-enable disk cache
Site Permissions
- Will not prevent users from explicitly adding exceptions via Prefs or Page Info
Passwords
- Do not prompt to save passwords.
- Passwords will not autofill, but will be available for autocomplete.
Other
- Autocomplete will be available, but will not remember data entered.
- DOMStorage will not allow reading or writing of data (need JST/Enn feeedback on how to do this cleanly)
- All authenticated sessions will be logged out entering and leaving private mode.
- Downloads will be removed from dlmgr on completion.
Session Store
- On entry:
- Save session, close all tabs, open a blank tab.
- During:
- Do not save any session data to disk, keep undo close tab data in memory.
- On exit:
- Clear all session data in memory, load saved session from disk.
APIs for Extensions
You can view a draft of the APIs that the extensions will be able to use in order to interact with the private browsing mode here. This page also includes a number of code samples for common tasks.