MozillaWiki

Security/Reviews/Gaia/Contacts: Difference between revisions

Page Discussion

Security/Reviews/Gaia/Contacts (view source)

Revision as of 02:22, 5 March 2013

148 bytes added ,  5 March 2013
→‎3. (Secure) data storage
Line 140: Line 140:
====3. (Secure) data storage ====
====3. (Secure) data storage ====


The contacts are stored using async_storage.js which is a wrapper around IndexedDB. The contacts data is therefore only available to the communications app. That does include the dialer and first time setup since those are the same app/domain.
The contacts are stored using the mozContacts API which uses IndexedDB under the covers. The app also uses async_storage, a wrapper around IndexedDB, to store settings and for example the Facebook oauth token.
 
The mozContacts data is global to every app with contacts permission while the IndexedDB with app specific data is only available to the communications app. (Dialer, FTU, Contacts)


====4. Denial of Service ====
====4. Denial of Service ====
St3fan
Confirmed users
971

edits

Retrieved from "https://wiki.allizom.org/Special:MobileDiff/535838"