go to about:config type security.checkloaduri and set it to false to allow local images loaded from remote sites
or is this a dupe of Bug 176502 ?
I can't expect every user of the site to change their configs, nor can I call enabling this by default a security hole since it would still require explicit user interaction to enable access to the file, which the site will eventually have access to anyway since it's about to be submitted to the server.
I'm pretty sure this is a dup, but I can't find the other bug.
Assignee: nobody → dveditz
Severity: normal → enhancement
Component: Security → Security
Product: Firefox → Core
QA Contact: firefox → toolkit
Summary: security too tight when referencing to user-selected files → CheckLoadURI exception for files about to be uploaded (let sites show preview of image referenced in <input type="file">)
Version: unspecified → Trunk
Resolving unconfirmed bugs older than a year with no activity as INCOMPLETE. Please reopen or file a new bug if you can still reproduce the bug.
Status: UNCONFIRMED → RESOLVED
Last Resolved: 8 years ago
Resolution: --- → INCOMPLETE
This is actually doable nowadays with the proposed standard documented at https://developer.mozilla.org/en/DOM/FileReader
Resolution: INCOMPLETE → FIXED
You need to log in before you can comment on or make changes to this bug.