Boris Zbarsky wrote: > ksachdeva wrote: > >> Again, subject to same-origin security checks if the caller is not > >> privileged. > > > > This would be a problem !! This means that XmlHttpRequest will check > > the privileges irrespective of protocol handler ? > > Yes. > > > In this case I would not be able to use it as I intend to communicate with > > a device attached > > to the machine. > > From untrusted script?
There are 2 reasons why I see it is not a problem - My security device does not open its doors unless you authenticate and more importantly all communication is over a secure channel. Second reason is that Firefox pops up a dialog for user consent to allow access of native resource from remote script (which is a good thing but dialog box is ugly and its contents are not fair). > > > I am back to my problem again. You mentioned that it would not be > > possible to get the LoadGroup in a frozen way. Seems like I am stuck > > and may need to compile my extension for different versions of Firefox. > > Yeah... Or use as single binary with QI to different IID values for > nsIDocument > to figure out which version you're using or something... > This is a good pointer. Boris, you have been very helpful, learnt a lot from you. regards Kapil > -Boris _______________________________________________ dev-tech-xpcom mailing list [email protected] https://lists.mozilla.org/listinfo/dev-tech-xpcom
