Skip to content
This repository was archived by the owner on Dec 11, 2019. It is now read-only.

update site settings for main frame url and use requesting origin in … #3942

Merged
merged 1 commit into from
Sep 13, 2016
Merged

update site settings for main frame url and use requesting origin in … #3942

merged 1 commit into from
Sep 13, 2016

Conversation

bridiver
Copy link
Collaborator

  • Submitted a ticket for my issue if one did not already exist.
  • Used Github auto-closing keywords in the commit message.
  • Added/updated tests for this change (for new code or code which already has tests).
  • Ran git rebase -i to squash commits (if needed).

Test Plan:

…the permission dialog

fix #3877
auditors: @bbondy @diracdeltas @mrose17

geoip service must be enabled through
GOOGLE_API_KEY
GOOGLE_API_ENDPOINT
env vars
requires brave/muon@f890204

@bridiver
update site settings for main frame url and use requesting origin in …
444ffd5 
…the permission dialog

fix #3877
auditors: @bbondy @diracdeltas @mrose17

geoip service must be enabled through 
GOOGLE_API_KEY
GOOGLE_API_ENDPOINT
env vars
requires brave/muon@f890204
@bridiver
Copy link
Collaborator Author

this allows us to use the navigator.geolocation with any service compatible with the google geolocation api

@bbondy
Copy link
Member

bbondy commented Sep 13, 2016

++

@bbondy bbondy merged commit 58dbabc into master Sep 13, 2016
diracdeltas
diracdeltas reviewed Sep 13, 2016
View reviewed changes
app/filtering.js
@@ -357,7 +352,7 @@ function registerPermissionHandler (session, partition) {
{text: locale.translation('deny')},
{text: locale.translation('allow')}
],
frameOrigin,
origin,
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

this should be the mainFrameUrl origin

Copy link
Collaborator Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I guess I'm confused about how this should work. The origin is the origin of the url that is actually requesting the permission. If we used mainFrameUrl here it would appear to the user that the main page is requesting permission when it may actually be requested by a frame with a different origin

@diracdeltas diracdeltas mentioned this pull request Sep 13, 2016
Closed
@luixxiul luixxiul added this to the 0.12.1dev milestone Sep 14, 2016
@alexwykoff alexwykoff mentioned this pull request Sep 15, 2016
Closed
@bbondy bbondy deleted the permission-urls branch September 23, 2016 00:02
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Reviewers
No reviews
Assignees
No one assigned
Labels
QA/checked-Linux QA/checked-Win32 QA/checked-Win64
Projects
None yet
Milestone
0.12.1dev
Development

Successfully merging this pull request may close these issues.

Regression : session.setPermissionRequestHandler callback is broken
6 participants
@bridiver @bbondy @diracdeltas @alexwykoff @luixxiul @srirambv