The button changes to "Signed in" with certain settings (Custom mode - All third-party cookies)
Categories
(Core :: Privacy: Anti-Tracking, defect)
Tracking
()
| Tracking | Status | |
|---|---|---|
| firefox-esr68 | --- | unaffected |
| firefox75 | --- | unaffected |
| firefox76 | --- | disabled |
| firefox77 | --- | disabled |
| firefox78 | --- | wontfix |
People
(Reporter: obotisan, Unassigned)
References
Details
(Keywords: regression)
Affected versions
- Firefox 77.0a1
Affected platforms
- Windows 10 x64
- macOS 10.15
Steps to reproduce
- Reach about:preferences#privacy and Set the Custom option:
- Tracking Content - In all windows
- Cookies - All third-party cookies (may cause websites to break)
- Reach https://senglehardt.com/test/identity_providers/google.html and Click the Sign in Prompt.
- Provide a valid email address and a password then sign in.
Expected result
- The google button string remains unchanged "Sign in".
Actual result
- The google button string is changed to "Signed in".
Regression range
- This is a recent regression, because I can't reproduce the issue on Firefox 76.0.
|
Reporter | |
Updated•4 years ago
|
|
||
Comment 1•4 years ago
|
||
I can't reproduce this on the latest Nightly 78.0a1. Maybe this was fixed. Could you check again with the latest Nightly?
|
||
Updated•4 years ago
|
|
|
Reporter | |
Comment 2•4 years ago
|
||
I can still reproduce the issue using Nightly 78.0a1 (2020-05-05) on Windows 10 x64.
|
||
Comment 3•4 years ago
|
||
Hi, I was able to get a regression window for this issue and it seems Bug 1625568 might be the cause of it. Here is the First and last known good builds:
First known BAD:
Last known GOOD:
|
|
||
Comment 4•4 years ago
|
||
The regression window points to code that landed in 76 but the comment #0 says that 76 is not affected. Is it a nightly-only regression?
|
|
||
Comment 5•4 years ago
|
||
Oh great, I figured out what's going on here. Right now, we've enabled the heuristic for rejecting third-party cookies in Nightly. So, the third-party cookies would be accessible in this test case since the heuristic will be triggered. So, "Signed in" is expected here in Nightly, but only in Nightly.
The good news is that this heuristic is put behind a pref "network.cookie.rejectForeignWithExceptions.enabled". Could you turn this pref off and try it again?
|
|
||
Comment 6•4 years ago
|
||
With this pref network.cookie.rejectForeignWithExceptions.enabled set to false i was unable to reproduce this issue at all.
|
|
||
Comment 7•4 years ago
|
||
Thanks, marking as disabled for beta and release.
|
|
||
Comment 8•4 years ago
|
||
This behavior is expected in Nightly. And we can resolve this issue by turn the pref "network.cookie.rejectForeignWithExceptions.enabled" off. Resolve this as WFM.
|
|
||
Comment 9•4 years ago
|
||
Sorry, Resolve Invalid is more appropriate.
|
||
Updated•4 years ago
|
Description
•