Opened 17 months ago
Closed 17 months ago
#26622 closed defect (duplicate)
cannot view or clean cookies from some web sites
| Reported by: | q_p | Owned by: | tbb-team |
|---|---|---|---|
| Priority: | High | Milestone: | |
| Component: | Applications/Tor Browser | Version: | |
| Severity: | Normal | Keywords: | |
| Cc: | gamma@… | Actual Points: | |
| Parent ID: | Points: | ||
| Reviewer: | Sponsor: |
Description
tl;dr
tor browser 7.5.6 : cookies not shown in security section in page info even even though the are exists,
and can be found in dev tools and cannot delete them.
Using tor 7.5.6 on windows desktop (firefox version:52.9.0) under : page info > security > view cookies . the cookie list of the website is empty.
But in the console inside development tools typing document.cookie returns a non empty string, say there are cookies in the site, in addition viewing in the network section in development tools it is seen clearly there are cookies in use (the cookies header is not empty). In addition cannot delete the cookies even document.cookie = "".
.
how to fix that browses security problem?
thank
Child Tickets
Change History (3)
comment:1 Changed 17 months ago by
comment:2 Changed 17 months ago by
| Cc: | gamma@… added |
|---|---|
| Milestone: | Tor: unspecified |
| Points: | cookies not shown in securety section |
| Version: | Tor: 0.3.3.7 |
comment:3 Changed 17 months ago by
| Keywords: | cookies securety view cooike cannot see cookies removed |
|---|---|
| Resolution: | → duplicate |
| Status: | new → closed |
Duplicate of #10353.
I'm not sure about document.cookie; but in general any cookie editing user interface features probably aren't correctly dealing with OriginAttributes and thus won't work. If it's a Firefox UI feature; that's a Firefox bug. (But there's also the general meta question 'How the heck do we expose the UI for a hidden feature succintly?')
We do have the APIs exposed for WebExtensions to manipulate OA-based cookies but almost no one takes them into account.