Realized that we really should have prefs to disable our cross-site XHR support, in case there's bugs or for whatever other reason. I also added a pref to disable just the loading of private data since from a security point of view that is the most controversial aspect.
Created attachment 378714 [details] [diff] [review] Patch to fix Also contains a small conformance fix which is why tests were needed. I don't yet have tests for the actual prefs, but I ran the test suite manually with the different prefs enabled and the right tests were failing. I'll write up a automatic test as soon as possible.
9 years ago
Checked in everywhere yesterday: http://hg.mozilla.org/mozilla-central/rev/3efa18f4298f http://hg.mozilla.org/releases/mozilla-1.9.1/rev/08d3a3688cf2
Status: NEW → RESOLVED
Last Resolved: 9 years ago
Resolution: --- → FIXED
(Not a blocker, though glad it's fixed!)
Flags: blocking1.9.1? → blocking1.9.1-
There's no tests in the test suite for this yet. I did test manually before checking in by setting the prefs and running the tests that we have in the tree and checked that the right ones failed, but there's no automated tests yet.
Flags: in-testsuite+ → in-testsuite?
You need to log in before you can comment on or make changes to this bug.