Closed
Bug 340987
Opened 18 years ago
Closed 15 years ago
Implement JSON extensions to the JS language.
Categories
(Core :: JavaScript Engine, defect)
Core
JavaScript Engine
Tracking
()
RESOLVED
DUPLICATE
of bug 408838
People
(Reporter: erik, Unassigned)
References
()
Details
(Keywords: perf)
Implement JSON methods on JS objects. This is planned for JS2.0 but I don't see a reason why it should not be added to JS1.x As far as I remember these new methods are: String.prototype.parseJSON Object.prototype.toJSONString Sub classes of Object needs to override this. Array.prototype.toJSONString String.prototype.toJSONString Other built in classes can use toString
|
||
Comment 1•18 years ago
|
||
Interesting. I'm guessing these differ from eval/uneval by refusing to eval or uneval functions, for example?
|
||
Comment 2•18 years ago
|
||
This is still being discussed for ES4, it won't make JS1.7. /be
Assignee: brendan → general
|
|
||
Comment 3•18 years ago
|
||
This might be good to do in Mozilla 1.9/Firefox 3, but then we're on the slippery slope to a JS1.8... /be
Target Milestone: --- → mozilla1.8.1alpha2
|
||
Updated•18 years ago
|
Target Milestone: mozilla1.8.1alpha2 → ---
|
||
Comment 4•18 years ago
|
||
*** Bug 360666 has been marked as a duplicate of this bug. ***
The JSON syntax allows arrays to be the root object. There has been an article on Ajaxian <http://ajaxian.com/archives/the-safety-of-json> that describes a way of stealing cross-domain JSON data (if the JSON is an array) by overriding the Array constructor, then pulling in the JSON with a cross-domain script tag and then capturing the generated array before it goes away. Is it possible to mitigate this attack?
|
|
||
Comment 6•17 years ago
|
||
nrlz, see bug 376957, "Prevent data leaks from cross-site JSON loads".
|
||
Comment 7•17 years ago
|
||
Now that Native JSON Support (bug 387522) has landed, can we set this to be on track with FF3b3? Like that ticket, getting this to land would be a huge performance win - perhaps more so, considering that this would effect thousands of web applications directly.
Keywords: perf
|
|
||
Updated•17 years ago
|
Flags: blocking1.9?
|
||
Comment 8•17 years ago
|
||
I am wondering if bug 408838 better serves John's needs for exposing native JSON to web content.
|
||
Comment 9•17 years ago
|
||
I'd love this personally, but time is running short for FF3 and we are way beyond new feature type stuff. If we can get a low-risk version in great - but we will not hold the release for this.
Flags: wanted1.9+
Flags: blocking1.9?
Flags: blocking1.9-
|
Reporter | |
Updated•16 years ago
|
|
|
||
Comment 11•15 years ago
|
||
Is this a pure DUP? /be
|
||
Updated•15 years ago
|
Status: NEW → RESOLVED
Closed: 15 years ago
Resolution: --- → DUPLICATE
You need to log in
before you can comment on or make changes to this bug.
Description
•