Closed
Bug 219637
Opened 21 years ago
Closed 21 years ago
chrome XBL is not trusted in remote XUL applications
Categories
(Core :: XBL, defect)
Tracking
()
People
(Reporter: ygoraly, Assigned: hyatt)
Details
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.0; en-US; rv:1.4.1) Gecko/20030906
Build Identifier: Mozilla/5.0 (Windows; U; Windows NT 5.0; en-US; rv:1.4.1) Gecko/20030906
In an XUL page loaded remotely JavaScript code embedded in XBL files is not
considered as trusted code, and as a result functionality is missing.
For example, the textbox context menu is not working
Reproducible: Always
Steps to Reproduce:
1.
2.
3.
Comment 1•21 years ago
|
||
This is an open question with regards to XBL. I personally believe that it
should be possible for XBL to operate under its own security context, instead of
the document security context, but hyatt disagrees. Hixie and hyatt are working
on a new XBL spec... we shall see.
*** This bug has been marked as a duplicate of 59701 ***
Severity: major → normal
Status: UNCONFIRMED → RESOLVED
Closed: 21 years ago
Resolution: --- → DUPLICATE
You need to log in
before you can comment on or make changes to this bug.
Description
•