Make SeaMonkey content package contentaccessible

RESOLVED WORKSFORME

Status

SeaMonkey
General
RESOLVED WORKSFORME
9 years ago
9 years ago

People

(Reporter: Misak Khachatryan, Unassigned)

Tracking

Trunk
seamonkey2.0

Firefox Tracking Flags

(Not tracked)

Details

(Reporter)

Description

9 years ago
As discussed in bug 463504, we need to mark   SeaMonkey content as package contentaccessible to allow for example new cert error page access it's files.

Comment 1

9 years ago
I think we should create a new package for this, even if the package contains no files and uses overrides (like the messagebody package does).

Updated

9 years ago
Blocks: 463504

Comment 2

9 years ago
I'm still not convinced that we can't just make communicator contentaccessible - what's the security violation scenario of someone accessing contents of that package when all the code to it is open anyway and execution with chrome privileges is prohibited through other mechanism?

Comment 3

9 years ago
When philor wanted to fix smileys we decided to create a separate package instead of making messenger contentaccessible like the way global and browser are because that felt sloppy (quoted from IRC).

It actually only needed one line in jar.mn:
content messagebody %content/messagebody/ contentaccessible=yes

Actually, we made messageBody.css a chrome override, but you get the idea from
content/messagebody/addressbook/print.css (addrbook/resources/content/print.css)

Comment 4

9 years ago
I see communicator/ being contentaccessible, so works for me :P
Status: NEW → RESOLVED
Last Resolved: 9 years ago
Resolution: --- → WORKSFORME
You need to log in before you can comment on or make changes to this bug.