Skip to content
This repository has been archived by the owner on Dec 11, 2019. It is now read-only.

don’t use data uris for about favicons #10001

Merged
merged 1 commit into from
Jul 28, 2017
Merged

don’t use data uris for about favicons #10001

merged 1 commit into from
Jul 28, 2017

Conversation

bridiver
Copy link
Collaborator

@bridiver bridiver commented Jul 16, 2017
edited by bsclifton
Loading

fix #10000

Submitter Checklist:

  • Submitted a ticket for my issue if one did not already exist.
  • Used Github auto-closing keywords in the commit message.
  • Added/updated tests for this change (for new code or code which already has tests).
  • Ran git rebase -i to squash commits (if needed).
  • Tagged reviewers and labelled the pull request as needed.

Test Plan:
See #10000

Reviewer Checklist:

Tests

  • Adequate test coverage exists to prevent regressions
  • Tests should be independent and work correctly when run individually or as a suite ref
  • New files have MPL2 license header

@bridiver bridiver self-assigned this Jul 16, 2017
@bridiver bridiver requested review from bbondy and bsclifton July 16, 2017 02:11
bridiver
bridiver commented Jul 16, 2017
View reviewed changes
app/extensions/brave/index-dev.html
@@ -7,7 +7,7 @@
<!-- TODO: Don't allow img-src *, needed for favicons -->
<!-- TODO: Refactor away all unsafe-inline content -->
<!-- TODO: Replace suggestqueries.google.com and ac.duckduckgo.com and other search engines with a single config search engine -->
<meta http-equiv="Content-Security-Policy" content="default-src 'none'; form-action http://localhost:*; script-src 'self' http://localhost:*; connect-src 'self' https://s3.amazonaws.com/adblock-data/ https://s3.amazonaws.com/safe-browsing-data/ https://s3.amazonaws.com/tracking-protection-data/ https://s3.amazonaws.com/https-everywhere-data/ http://localhost:* ws://localhost:* https://suggestqueries.google.com https://ac.duckduckgo.com https://completion.amazon.com https://search.yahoo.com https://api.bing.com https://www.startpage.com https://infogalactic.com https://api.qwant.com https://ac.ecosia.org https://searx.me https://brave-download.global.ssl.fastly.net https://brave-laptop-updates.global.ssl.fastly.net https://brave-download.global.ssl.fastly.net https://laptop-updates-pre.brave.com https://brave-laptop-updates-pre.brave.com; style-src 'unsafe-inline'; font-src 'self' http://localhost:*; img-src 'self' * data: file:; object-src 'self'; plugin-types application/browser-plugin">
<meta http-equiv="Content-Security-Policy" content="default-src 'none'; form-action http://localhost:*; script-src 'self' http://localhost:*; connect-src 'self' https://s3.amazonaws.com/adblock-data/ https://s3.amazonaws.com/safe-browsing-data/ https://s3.amazonaws.com/tracking-protection-data/ https://s3.amazonaws.com/https-everywhere-data/ http://localhost:* ws://localhost:* https://suggestqueries.google.com https://ac.duckduckgo.com https://completion.amazon.com https://search.yahoo.com https://api.bing.com https://www.startpage.com https://infogalactic.com https://api.qwant.com https://ac.ecosia.org https://searx.me https://brave-download.global.ssl.fastly.net https://brave-laptop-updates.global.ssl.fastly.net https://brave-download.global.ssl.fastly.net https://laptop-updates-pre.brave.com https://brave-laptop-updates-pre.brave.com; style-src 'unsafe-inline'; font-src 'self' http://localhost:*; img-src 'self' * data: file: chrome-extension:; object-src 'self'; plugin-types application/browser-plugin">
Copy link
Collaborator Author

@bridiver bridiver Jul 16, 2017
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

diffs in git unfortunately don't highlight changes in lines, but the change here and below is adding chrome-extension: as an img-src

@bridiver bridiver added the perf label Jul 16, 2017
cezaraugusto
cezaraugusto reviewed Jul 23, 2017
View reviewed changes
Copy link
Contributor

@cezaraugusto cezaraugusto left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

lgtm but won't about:welcome benefit from these changes too?

@bsclifton bsclifton added this to the 0.18.x Hotfix milestone Jul 28, 2017
bsclifton
bsclifton approved these changes Jul 28, 2017
View reviewed changes
Copy link
Member

@bsclifton bsclifton left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Changes LGTM 😄 I added the fix in for about:welcome and resolved the merge conflict

@bsclifton bsclifton merged commit 0067b65 into master Jul 28, 2017
@bsclifton bsclifton deleted the about-favicons branch July 28, 2017 17:19
bsclifton added a commit that referenced this pull request Jul 28, 2017
@bsclifton
Merge pull request #10001 from brave/about-favicons
2ae2a88 
don’t use data uris for about favicons
bsclifton added a commit that referenced this pull request Jul 28, 2017
@bsclifton
Merge pull request #10001 from brave/about-favicons
f630692 
don’t use data uris for about favicons
bsclifton added a commit that referenced this pull request Jul 28, 2017
@bsclifton
Merge pull request #10001 from brave/about-favicons
b985751 
don’t use data uris for about favicons
@bridiver bridiver mentioned this pull request Jul 30, 2017
Closed
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Reviewers

@cezaraugusto cezaraugusto cezaraugusto left review comments

@bsclifton bsclifton bsclifton approved these changes

@bbondy bbondy Awaiting requested review from bbondy

Assignees

@bridiver bridiver

Labels
misc/favicon perf release-notes/include
Projects
None yet
Milestone
0.18.23 Hotfix
Development

Successfully merging this pull request may close these issues.

about favicons are taking up way too much space in the session store
4 participants
@bridiver @cezaraugusto @bsclifton @luixxiul