Open Bug 1725390 Opened 3 years ago Updated 1 year ago

Ensure https-first handles downloads correctly

Categories

(Core :: DOM: Security, task, P1)

Product:
Core
Component:
DOM: Security
Type:
task

Tracking

()

Tracking Flags:
Tracking Status
firefox-esr102 --- affected
firefox110 --- affected
firefox111 --- affected

People

(Reporter: ckerschb, Unassigned)

References

(Depends on 1 open bug, Blocks 1 open bug)

Details

(Whiteboard: [domsecurity-active])

Downloads are treated as TYPE_DOCUMENT which means that https-first tries to upgrade those. What happens if the download is not available over https?

We should write an automated test and investigate how we can handle that.

Flags: needinfo?(ckerschb)
Flags: needinfo?(ckerschb)
Depends on: 1745146
Depends on: 1745186
Depends on: 1745650
Depends on: 1739113
Depends on: 1746173
Depends on: 1749953
No longer depends on: 1739113
Duplicate of this bug: 1802640
Assignee: t.yavor → nobody
Status: ASSIGNED → NEW
You need to log in before you can comment on or make changes to this bug.