[Resending to lists.mozilla.org instead of lists.mozilla.com]
-------- Original Message -------- Subject: Re: New Security Details document Date: Thu, 09 Aug 2012 07:17:09 -0700 From: David Flanagan <[email protected]> To: Jonas Sicking <[email protected]> CC: [email protected] That's a great overview. Thanks! The Gallery app now uses webgl for image editing, and for convenience, I've stuck the GLSL shader source code into inline script tags with a custom type attribute. Will this get me into trouble with the no inline scripts part of the default CSP? No JS code is involved, but these are inline script tags. David On 8/8/12 5:52 PM, Jonas Sicking wrote:
Hi All, bcc'ing broadly here since I've attempted to answer questions from a lot of different people. I've written a new document which documents the OpenWebApps/B2G model in more detail: https://wiki.mozilla.org/Apps/SecurityDetails Please post any replies to dev-webapps in order to keep the discussion coherent. There are still some sections missing towards the end, but they should mostly cover implementation details. My hope is to fill those out too very soon, but the document already seems useful so I wanted to start pointing people to it. I'm very aware that it's a big document, but there's been a lot of questions and confusion, so there's a lot of information to get out. I've tried to put useful headings on the various sections so that people can skip to the sections that interest them. / Jonas _______________________________________________ dev-b2g mailing list [email protected] https://lists.mozilla.org/listinfo/dev-b2g
_______________________________________________ dev-webapps mailing list [email protected] https://lists.mozilla.org/listinfo/dev-webapps
