MozillaWiki

FirefoxOS/New security model: Difference between revisions

Page Discussion

FirefoxOS/New security model (view source)

Revision as of 23:13, 29 June 2015

396 bytes removed ,  29 June 2015
→‎Verifying signatures - {{Bug|1153422}}
Line 60: Line 60:
Another thing that needs to be done before any content is served by the network layer is to look in the manifest and populate the nsIPermissionManager database with any permissions enumerated in the manifest. After having checked that the manifest properly matches the signature of course.
Another thing that needs to be done before any content is served by the network layer is to look in the manifest and populate the nsIPermissionManager database with any permissions enumerated in the manifest. After having checked that the manifest properly matches the signature of course.


 
<bugzilla>
 
  {
Bug XXX - Verify the package signature
    "blocks": 1153422,
Bug XXX - Ensure the package is verified before content is served
    "include_fields": "id, priority, summary, status, assigned_to,resolution",
Bug XXX - Set appropriate origin attributes for signed packages
    "order": "bug_id"
Bug XXX - cache the signature check so that we dont need to recheck everytime
  }
Bug XXX - register permissions, system messages etc on navigation to signed packages
</bugzilla>
Bug XXX - update of permissions, system messages & activities etc if you on package change/cache eviction etc
Bug XXX - create an "about:permissions: equivalent for FxOS which works for unpinned navigated to content.


=== CSP ===
=== CSP ===
Ptheriault
canmove, Confirmed users
1,220

edits

Retrieved from "https://wiki.mozilla.org/Special:MobileDiff/1081958"