Bug 494424 - Update help for geolocation. r=IanN, a=Help change
authorrsx11m <rsx11m.pub@gmail.com>
Tue, 12 Jul 2016 18:02:36 -0500
changeset 8645 5a8b3910361d2560797a7209834fd35ff9621989
parent 8644 3fb7a5e5c0868794616f68b01ad699f6143b521e
child 8646 55cbf3ff8cd1b6f60bed52aae11983241b6313d6
push id1
push useraxel@mozilla.com
push dateTue, 10 Oct 2017 22:14:06 +0000
reviewersIanN, Help
bugs494424
Bug 494424 - Update help for geolocation. r=IanN, a=Help change X-Channel-Repo: comm-central X-Channel-Converted-Revision: 495261ce314cb0ea17b38be27efc20cd357f23e0
suite/chrome/common/help/glossary.xhtml
suite/chrome/common/help/help-glossary.rdf
suite/chrome/common/help/help-index1.rdf
suite/chrome/common/help/privacy_help.xhtml
suite/chrome/common/help/privsec_help.xhtml
--- a/suite/chrome/common/help/glossary.xhtml
+++ b/suite/chrome/common/help/glossary.xhtml
@@ -317,16 +317,19 @@
 
 <dt id="frame">frame</dt><dd>Frames are <a href="#web_page">web pages</a>
   contained inside of an all-encompassing <q>meta</q> page.</dd>
 
 <dt id="ftp">FTP (File Transfer Protocol)</dt><dd>A
   standard that allows users to transfer files from one computer to another
   over a network. You can use your browser to fetch files using FTP.</dd>
 
+<dt id="geolocation_service">geolocation service</dt><dd>A web service for
+  <a href="#location_aware_browsing">location aware browsing</a>.</dd>
+
 <dt id="gssapi">GSSAPI (Generic Security Services Application Program
   Interface)</dt><dd>See <a href="#kerberos">Kerberos</a>.</dd>
 
 <dt id="helper_application">helper application</dt><dd>Any application that is
   used to open or view a file downloaded by the browser. A
   <a href="#plugin">plugin</a> is a special kind of helper application that
   installs itself into the Plugins directory of the main browser installation
   directory and can typically be opened within the browser itself (internally).
@@ -432,16 +435,25 @@
   compact plain text syntax to write complex mathematical formulas.</dd>
 
 <dt id="ldap">LDAP (Lightweight Directory Access Protocol)</dt><dd>A standard
   protocol for accessing directory services, such as corporate address books,
   across multiple platforms. You can set up your browser to access LDAP
   directories from the Address Book. You can also set up Mail &amp; Newsgroups
   to use an LDAP directory for email address autocompletion.</dd>
 
+<dt id="location_aware_browsing">location aware browsing</dt><dd>A method to
+  determine a user&apos;s location to provide customized services for the
+  current position, or for the purpose of <a href="#user_tracking">user
+  tracking</a>. In addition to the <a href="#ip_address">IP address</a>,
+  provider-specific information like wireless access points are used to
+  determine longitude and latitude, altitude as well as speed and heading
+  (as available) for the requesting <a href="#website">website</a>.
+  Provided by a <a href="#geolocation_service">geolocation service</a>.</dd>
+
 <dt id="location_bar">Location Bar</dt><dd>The field (and associated buttons)
   near the top of a browser window where you can type a
   <a href="#url">URL</a> or search terms.</dd>
 
 <dt id="malware">Malware</dt><dd>Short for <q><u>Mal</u>icious
   Soft<u>ware</u></q> and a general term for a variety of software designed
   to disrupt computer operation, gather sensitive information, or gain access
   to your computer. They can be distributed by infected <a href="#web_page">web
--- a/suite/chrome/common/help/help-glossary.rdf
+++ b/suite/chrome/common/help/help-glossary.rdf
@@ -52,16 +52,17 @@
         <rdf:li> <rdf:Description nc:name="extension" nc:link="glossary.xhtml#extension"/> </rdf:li>
         <rdf:li> <rdf:Description nc:name="feed" nc:link="glossary.xhtml#feed"/> </rdf:li>
         <rdf:li> <rdf:Description nc:name="fingerprint (certificate)" nc:link="glossary.xhtml#fingerprint"/> </rdf:li>
         <rdf:li> <rdf:Description nc:name="fingerprinting (browser)" nc:link="glossary.xhtml#fingerprinting"/> </rdf:li>
         <rdf:li> <rdf:Description nc:name="FIPS PUBS 140-1" nc:link="glossary.xhtml#fips_pubs_140-1"/> </rdf:li>
         <rdf:li> <rdf:Description nc:name="foreign cookie" nc:link="glossary.xhtml#foreign_cookie"/> </rdf:li>
         <rdf:li> <rdf:Description nc:name="frame" nc:link="glossary.xhtml#frame"/> </rdf:li>
         <rdf:li> <rdf:Description nc:name="FTP" nc:link="glossary.xhtml#ftp"/> </rdf:li>
+        <rdf:li> <rdf:Description nc:name="geolocation service" nc:link="glossary.xhtml#geolocation_service"/> </rdf:li>
         <rdf:li> <rdf:Description nc:name="GSSAPI" nc:link="glossary.xhtml#gssapi"/> </rdf:li>
         <rdf:li> <rdf:Description nc:name="helper application" nc:link="glossary.xhtml#helper_application"/> </rdf:li>
         <rdf:li> <rdf:Description nc:name="home page" nc:link="glossary.xhtml#home_page"/> </rdf:li>
         <rdf:li> <rdf:Description nc:name="HTML" nc:link="glossary.xhtml#html"/> </rdf:li>
         <rdf:li> <rdf:Description nc:name="HTTP" nc:link="glossary.xhtml#http"/> </rdf:li>
         <rdf:li> <rdf:Description nc:name="HTTPS" nc:link="glossary.xhtml#https"/> </rdf:li>
         <rdf:li> <rdf:Description nc:name="IMAP" nc:link="glossary.xhtml#imap"/> </rdf:li>
         <rdf:li> <rdf:Description nc:name="implicit consent" nc:link="glossary.xhtml#implicit_consent"/> </rdf:li>
@@ -71,16 +72,17 @@
         <rdf:li> <rdf:Description nc:name="ISP" nc:link="glossary.xhtml#isp"/> </rdf:li>
         <rdf:li> <rdf:Description nc:name="Java" nc:link="glossary.xhtml#java"/> </rdf:li>
         <rdf:li> <rdf:Description nc:name="JavaScript" nc:link="glossary.xhtml#javascript"/> </rdf:li>
         <rdf:li> <rdf:Description nc:name="Kerberos" nc:link="glossary.xhtml#kerberos"/> </rdf:li>
         <rdf:li> <rdf:Description nc:name="key" nc:link="glossary.xhtml#key"/> </rdf:li>
         <rdf:li> <rdf:Description nc:name="LaTeX" nc:link="glossary.xhtml#latex"/> </rdf:li>
         <rdf:li> <rdf:Description nc:name="LDAP" nc:link="glossary.xhtml#ldap"/> </rdf:li>
         <rdf:li> <rdf:Description nc:name="language pack" nc:link="glossary.xhtml#language_pack"/> </rdf:li>
+        <rdf:li> <rdf:Description nc:name="location aware browsing" nc:link="glossary.xhtml#location_aware_browsing"/> </rdf:li>
         <rdf:li> <rdf:Description nc:name="Location Bar" nc:link="glossary.xhtml#location_bar"/> </rdf:li>
         <rdf:li> <rdf:Description nc:name="Malware" nc:link="glossary.xhtml#malware"/> </rdf:li>
         <rdf:li> <rdf:Description nc:name="master key" nc:link="glossary.xhtml#master_key"/> </rdf:li>
         <rdf:li> <rdf:Description nc:name="master password" nc:link="glossary.xhtml#master_password"/> </rdf:li>
         <rdf:li> <rdf:Description nc:name="MathML" nc:link="glossary.xhtml#mathml"/> </rdf:li>
         <rdf:li> <rdf:Description nc:name="misrepresentation" nc:link="glossary.xhtml#misrepresentation"/> </rdf:li>
         <rdf:li> <rdf:Description nc:name="Navigation Toolbar" nc:link="glossary.xhtml#navigation_toolbar"/> </rdf:li>
         <rdf:li> <rdf:Description nc:name="nonrepudiation" nc:link="glossary.xhtml#nonrepudiation"/> </rdf:li>
--- a/suite/chrome/common/help/help-index1.rdf
+++ b/suite/chrome/common/help/help-index1.rdf
@@ -998,16 +998,21 @@
          nc:link="customize_help.xhtml#the_languages_panel"/>
      </rdf:li>
      <rdf:li>
        <rdf:Description ID="LDAP"
          nc:name="LDAP"
          nc:link="mailnews_addressbooks.xhtml#adding_and_removing_ldap_directories"/>
      </rdf:li>
      <rdf:li>
+       <rdf:Description ID="location_aware_browsing"
+         nc:name="location aware browsing preferences"
+         nc:link="privsec_help.xhtml#location_aware_browsing"/>
+     </rdf:li>
+     <rdf:li>
        <rdf:Description ID="lock_icon"
          nc:name="lock icon"
          nc:link="using_certs_help.xhtml#checking_security_for_a_web_page"/>
      </rdf:li></rdf:Seq>
    </nc:subheadings>
 </rdf:Description>
 
 <rdf:Description about="#languages">
--- a/suite/chrome/common/help/privacy_help.xhtml
+++ b/suite/chrome/common/help/privacy_help.xhtml
@@ -218,16 +218,22 @@
     especially effective for third-party tracking given that such a service
     can collect data from multiple websites they have contracts with based on
     just a single tracking cookie.</li>
   <li><a href="#internet_address">Internet Address</a>: The IP address
     identifies your location on your provider&apos;s network. It may also
     serve as a reference to your geographical location. Even without cookies,
     multiple accesses to one or more websites from the same location can be
     associated with each other in this way.</li>
+  <li><a href="privsec_help.xhtml#location_aware_browsing">Geolocation</a>:
+    Much more detailed information about the user&apos;s location can be
+    obtained with location aware browsing services. Based on additional
+    information gathered by the browser, such as wireless access points,
+    a user&apos;s position and (in certain situations) heading and speed can
+    be determined and used by the website to track the user.</li>
   <li><a href="#what_information_does_my_browser_give_to_a_website">Browser
     Fingerprinting</a>: This method attempts to identify specific users based
     on the characteristics of the browser that they are using. Such
     characteristics include browser type and version, platform used, language
     preferences, and possibly installed plugins or add-ons.</li>
 </ul>
 
 <h3>What Can I Do to Prevent User Tracking?</h3>
@@ -243,16 +249,23 @@
     <q>Do Not Track</q> requests to websites, but they are <em>not</em>
     obligated to honor such requests.</li>
   <li><a href="privsec_help.xhtml#privacy_and_security">Site blocking</a>:
     &brandShortName; can block content that has been identified as serving
     the purpose of user tracking based on a list downloaded periodically
     from a server. In this way, connections to such <em>known</em> tracking
     sites can be prevented upfront.</li>
   <!-- NOTE: link "Data Manager" below once bug 599097 has been fixed -->
+  <li><a href="privsec_help.xhtml#location_aware_browsing">Location Aware
+    Browsing</a>: Disabling geolocation services prevents a website from
+    obtaining location information beyond what can be derived from the IP
+    address of the access alone. Note though that this is always an opt-in
+    service, thus you will get a notification for each request unless you
+    gave a website permanent permission to use geolocation services.</li>
+  <!-- NOTE: link "Data Manager" below once bug 599097 has been fixed -->
   <li><a href="using_priv_help.xhtml#cookies">Cookies</a>: The power of
     tracking cookies is their persistence across sessions. Thus, when you
     restart &brandShortName;, the identifying cookie will still be sent to
     the website performing the analytics. One measure against third-party
     tracking is to prohibit third-party cookies altogether; another option is
     the restriction of cookies to the current session only. Some websites may
     no longer function correctly, but you can add exceptions to such sites in
     the Data Manager or with the Cookie Manager options in the Tools menu.</li>
--- a/suite/chrome/common/help/privsec_help.xhtml
+++ b/suite/chrome/common/help/privsec_help.xhtml
@@ -118,16 +118,69 @@
     which are to be blocked if enabled. Tracking sites <em>not</em> on that
     list will still be connected to until they are listed.</li>
   <li>The selection of <q>Unblock</q> in the notification bar for a specific
     site can be revoked in the Permissions tab of the Data Manager. When in
     a <a href="using_priv_help.xhtml#browsing_in_a_private_window">private
     window</a>, these options aren&apos;t present in the notification bar.</li>
 </ul>
 
+<h3 id="location_aware_browsing">Location Aware Browsing</h3>
+
+<p>Websites may want to obtain more detailed information about the user&apos;s
+  location, e.g., to offer specific services close to the current position. For
+  that purpose, they can request the longitude and latitude (along with other
+  information like altitude and heading, as available) from a browser.
+  &brandShortName; will never provide that information without the user&apos;s
+  consent. However, a notification is displayed for a page that requests the
+  location at least the first time that this site is visited. The preferences
+  located in the center section of the <a href="#privacy_and_security">Privacy
+  &amp; Security panel</a> allow you to disable this feature entirely:</p>
+
+<ul>
+  <li><strong>Prompt me for permission if a request is made</strong>: Select
+    this if you want &brandShortName; to prompt you if the website you are
+    visiting is requesting geolocation information. The notification provides
+    the following options:
+    <ul>
+      <li><strong>Share location</strong>: Select this option if you want the
+        current location to be determined and forwarded to the requesting site,
+        for <em>this</em> request only.</li>
+      <li><strong>Not for this request</strong>: Select this option if you do
+        <em>not</em> want the current location to be determined and forwarded
+        to the requesting site, prompt again for the next request.</li>
+      <li><strong>Always for this site</strong>: Select this option if you
+        want the current location to be determined and forwarded to the
+        requesting site, also for all <em>future</em> requests.</li>
+      <li><strong>Never for this site</strong>: Select this option if you do
+        <em>not</em> want the current location to be determined and forwarded
+        to the requesting site, also for all <em>future</em> requests.</li>
+    </ul>
+    Closing or dismissing the notification will not give any response to the
+    requesting page at all.</li>
+  <li><strong>Disable this feature and deny all requests</strong>: Select this
+    option for not being prompted for geolocation requests. &brandShortName;
+    will appear to a website as if it doesn&apos;t support this feature.</li>
+</ul>
+
+<p><strong>Notes</strong>:</p>
+
+<ul>
+  <li>Geolocation is a third-party web-based service. &brandShortName; collects
+    certain information about your internet access (e.g., wireless access
+    points) and sends those to this service.</li>
+  <li>The accuracy of the response varies and may range from city level to
+    within a few meters of your actual location.</li>
+  <li>No information about the requesting site itself is provided to the
+    geolocation service. The information returned by that service is provided
+    to the website by &brandShortName; in response to its request.</li>
+  <li>The requesting site receives an identification token that allows it to
+    track your movement for a limited time using the geolocation service.</li>
+</ul>
+
 <h3 id="safe_browsing">Safe Browsing</h3>
 
 <p>Some websites contain potentially dangerous content and may have been
   reported as malicious. The preferences located in the lower section of the
   <a href="#privacy_and_security">Privacy &amp; Security panel</a> allow you
   to select which types of reported websites will be blocked. If enabled,
   &brandShortName; compares each website&apos;s address you are about to visit
   against regularly updated lists. A warning is issued prior to actually