Closed Bug 14082 Opened 25 years ago Closed 25 years ago

[FEATURE]Need valid beta 1 way to close activation window from server

Categories

(Core Graveyard :: Profile: BackEnd, defect, P2)

defect

Tracking

(Not tracked)

VERIFIED FIXED

People

(Reporter: selmer, Assigned: racham)

References

()

Details

In beta 1, there is no signed javascript. Therefore, served JS isn't going to be able to get a toolkit object and call the toplevel close method to end the activation sequence. We need to find some other method. Here are some possbilities: 1. find out if, fix, or kludge a way for window.close(); to do the job 2. have the server load the URL resource:/res/profile/endact.xul and have that file do all the necessary stuff 3. make some exception in the security code so toplevel close can be called in this case 4. implement some bogus javascript function in place of 1, 2, or 3 Anyone have any other ideas?
Priority: P3 → P2
Target Milestone: M12
Status: NEW → ASSIGNED
Dogfood Candidate
Summary: Need valid beta 1 way to close activation window from server → [DOGFOOD]Need valid beta 1 way to close activation window from server
Need to get this in so we can coordinate with Netcenter and test activation.
Whiteboard: [PDT+]
Consult Porkjockeys for implementation strategy
Adding Norris to cc list. Hi Norris, Did you add any code recently to do a security check on executing JavaScript in the browser window ? We are trying to close the window (a webshell window) via javascript. I know secure JS is planned for beta. Brendan mentioned to me that you did some work on this stuff lately. So, I'm curious to find out if you had done any work in that direction and if there are any JS snippets to demonstrate the security related work.
Depends on: 7270
We're planning to have signed JavaScript by beta. I've added a dependency on the tracking bug for this feature. Currently I'm working on the code needed to enable privileges. mstoltz is working on downloading jar files and verifying digital signatures. We don't yet have either of these completely working yet. On the other issue, yes, I've been enabling security checks recently. Are you seeing a security error message printed out?
Isn't the window.close caller JS loaded from XUL in a chrome window? Why can't it close whatever chrome or content window it pleases, without security checks? It seems to me we should let chrome JS close windows. Or is the call from HTML JS? /be
For the activation service that we will be doing for Netcenter, it will be a HTML JS (JS they will be passing back after processing data) call to close the window.
Blocks: 17907
If web JavaScript opened the window, then there shouldn't need to be any signed privileges needed to close the window. What problems are you seeing?
The window is originally opened by the profile manager code during startup. The window gets closed by the html page served up from Netcenter.
Whiteboard: [PDT+] → [PDT+]- Fix by (11/19)
I'll be able to look more closely into this bug in the week ending 19th.
Blocks: 18951
Summary: [DOGFOOD]Need valid beta 1 way to close activation window from server → Need valid beta 1 way to close activation window from server
Whiteboard: [PDT+]- Fix by (11/19) → - Fix by (11/19)
Actually needed for sync with Netcenter... but not really dogfood... so we're removing the PDT+
Whiteboard: - Fix by (11/19)
Target Milestone: M12 → M13
Mass moving Netcenter Registration Activation related bugs to M13.
Target Milestone: M13 → M14
Summary: Need valid beta 1 way to close activation window from server → [FEATURE]Need valid beta 1 way to close activation window from server
Adding feature keyword to the summary.
Status: ASSIGNED → RESOLVED
Closed: 25 years ago
Resolution: --- → FIXED
close.window() now is the method to close the toplevel window. The url provided above has a test case. closing the bug.
Status: RESOLVED → VERIFIED
test case works
Component: Profile Manager → Profile Manager BackEnd
Moving all Profile Manager bugs to new Profile Manager Backend component. Profile Manager component to be deleted.
No longer depends on: 7270
No longer blocks: 17907
No longer blocks: 18951
Product: Core → Core Graveyard
You need to log in before you can comment on or make changes to this bug.