-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 >> a js function is attached as a field of the window object where it is >> declared. so, from your toolbar button handler, you can try >> _content.yourFunction() > > Except that won't work because it's insecure... You're have to do > _content.wrappedJSObject.yourFunction(), and be _really_ damned sure > that you trust the page to take over the user's computer if need be.
i was pretty sure i did this several times (i mean without the wrappedJSObject) but i agree, it's unsafe ! -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.1 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFFSMIztMkIv0/ruZgRAt9XAJ4wZzA6u6oAeRO+EUsTd6WoqR2x8gCgjvF9 jSmP/DfIt1AL+XtIRkruv4U= =IwGI -----END PGP SIGNATURE----- _______________________________________________ dev-tech-xpcom mailing list [email protected] https://lists.mozilla.org/listinfo/dev-tech-xpcom
