Update Basilisk FE code with HTTP Auth DoS protection.

author: wolfbeast <mcwerewolf@wolfbeast.com> 2019-02-28 14:16:09 +0100
committer: wolfbeast <mcwerewolf@wolfbeast.com> 2019-02-28 14:16:09 +0100
commit: f227feb6efbfa61c62cba88ab85df3c650311560 (patch)
tree: 1894f5e63b43ad6eca7270a0dedd7b0e678e403a /application/basilisk/base/content/browser.js
parent: c08b490c5c44f5f04049f408ad0848e9843f0702 (diff)
download: UXP-f227feb6efbfa61c62cba88ab85df3c650311560.tar
UXP-f227feb6efbfa61c62cba88ab85df3c650311560.tar.gz
UXP-f227feb6efbfa61c62cba88ab85df3c650311560.tar.lz
UXP-f227feb6efbfa61c62cba88ab85df3c650311560.tar.xz
UXP-f227feb6efbfa61c62cba88ab85df3c650311560.zip
1 files changed, 5 insertions, 0 deletions
diff --git a/application/basilisk/base/content/browser.js b/application/basilisk/base/content/browser.js
index 9fb997a42..336670fa0 100644
--- a/application/basilisk/base/content/browser.js
+++ b/application/basilisk/base/content/browser.js
@@ -3094,6 +3094,11 @@ function getWebNavigation()
 }
 
 function BrowserReloadWithFlags(reloadFlags) {
+
+  // Reset DOS mitigation for auth prompts when user initiates a reload.
+  let browser = gBrowser.selectedBrowser;
+  delete browser.authPromptCounter;
+
   let url = gBrowser.currentURI.spec;
   if (gBrowser.updateBrowserRemotenessByURL(gBrowser.selectedBrowser, url)) {
     // If the remoteness has changed, the new browser doesn't have any
author	wolfbeast <mcwerewolf@wolfbeast.com>	2019-02-28 14:16:09 +0100
committer	wolfbeast <mcwerewolf@wolfbeast.com>	2019-02-28 14:16:09 +0100
commit	f227feb6efbfa61c62cba88ab85df3c650311560 (patch)
tree	1894f5e63b43ad6eca7270a0dedd7b0e678e403a /application/basilisk/base/content/browser.js
parent	c08b490c5c44f5f04049f408ad0848e9843f0702 (diff)
download	UXP-f227feb6efbfa61c62cba88ab85df3c650311560.tar UXP-f227feb6efbfa61c62cba88ab85df3c650311560.tar.gz UXP-f227feb6efbfa61c62cba88ab85df3c650311560.tar.lz UXP-f227feb6efbfa61c62cba88ab85df3c650311560.tar.xz UXP-f227feb6efbfa61c62cba88ab85df3c650311560.zip