Closed Bug 219637 Opened 21 years ago Closed 21 years ago

chrome XBL is not trusted in remote XUL applications

Categories

(Core :: XBL, defect)

Product:
Core
Component:
XBL
Platform:
x86
Windows 2000
Type:
defect
Priority:
Not set
Severity:
normal

Tracking

()

Status:
RESOLVED DUPLICATE of bug 59701

People

(Reporter: ygoraly, Assigned: hyatt)

Details

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.0; en-US; rv:1.4.1) Gecko/20030906 Build Identifier: Mozilla/5.0 (Windows; U; Windows NT 5.0; en-US; rv:1.4.1) Gecko/20030906 In an XUL page loaded remotely JavaScript code embedded in XBL files is not considered as trusted code, and as a result functionality is missing. For example, the textbox context menu is not working Reproducible: Always Steps to Reproduce: 1. 2. 3.
This is an open question with regards to XBL. I personally believe that it should be possible for XBL to operate under its own security context, instead of the document security context, but hyatt disagrees. Hixie and hyatt are working on a new XBL spec... we shall see. *** This bug has been marked as a duplicate of 59701 ***
Severity: major → normal
Status: UNCONFIRMED → RESOLVED
Closed: 21 years ago
Resolution: --- → DUPLICATE
You need to log in before you can comment on or make changes to this bug.