[tor-bugs] #21361 [Applications/Tor Browser]: Enable browser APIs only allowed in secure contexts for NG HS
Tor Bug Tracker & Wiki
blackhole at torproject.org
Wed Feb 1 20:26:44 UTC 2017
#21361: Enable browser APIs only allowed in secure contexts for NG HS
--------------------------------------+--------------------------
Reporter: legind | Owner: tbb-team
Type: defect | Status: new
Priority: Medium | Milestone:
Component: Applications/Tor Browser | Version:
Severity: Normal | Resolution:
Keywords: | Actual Points:
Parent ID: | Points:
Reviewer: | Sponsor:
--------------------------------------+--------------------------
Comment (by legind):
Likely there will be further APIs that move towards secure context as
well. In Chrome, for instance, the MIDI permission context is restricted
to secure origins as well:
https://cs.chromium.org/chromium/src/chrome/browser/media/midi_permission_context.cc?q=IsRestrictedToSecureOrigins+package:%5Echromium$&dr=CSs&l=40
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/21361#comment:3>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
More information about the tor-bugs
mailing list