canmove, Confirmed users
637
edits
Firefox/Projects/AccountManager/SecurityReview: Difference between revisions
Firefox/Projects/AccountManager/SecurityReview (view source)
Revision as of 00:00, 2 September 2010
, 2 September 2010→Review comments
| Line 172: | Line 172: | ||
** what do we do if it's not? | ** what do we do if it's not? | ||
* If site is HTTP then AMCD can be HTTP or HTTPS (but of course https is recommended) | * If site is HTTP then AMCD can be HTTP or HTTPS (but of course https is recommended) | ||
* Don't trust x-acct-mgmt-status unless the user actually has an account for that realm | |||
** pages might have x-acct-mgmt-status header and no AMCD! (Link: or host-meta) | |||
* What character set is the x-acct-mgmt-status? Easiest to just treat it as utf-8 | |||
* in the <XRD> the link tag can have a path. path is a substring, but must end in a '/' or else a '/' is assumed at the end. | |||
* AMCD has various "path" fields, but they're really full URIs potentially. Should be renamed to uri/url and allow/recommend relative paths (truth in advertising?). | |||
* currently no domain sanity checked in the AMCD uris. We do want mail.yahoo.com to be able to point to login.yahoo.com, but we don't really want it pointing at evil.com. For now leaving it up to sites to not be idiots. | |||