I don't see this two steps in the current Mozilla.
The tests cases in http://www.mozilla.org/projects/xpinstall/signed/testcases/index.html
directly show after download the dialog if I want to install and telling the xpi is unsigned.
They are treated as "unsigned" since the signature didn't validate correctly.
Anyway, the real decision can only really be made *after* the download is over and the full info is available.
I agree --- but we can show the user what we think it might be, then verify what we told the user.
So it would be better to change that.
I disagree. MS does the same thing with there signed downloads (cabs, iirc)
Can I enter a bug for this ? (I don't think it exist already) I will *try* to fix if I can find the time. If you can just gives me the right pointeur to the source.
CC' me. _______________________________________________ mozilla-crypto mailing list [EMAIL PROTECTED] http://mail.mozilla.org/listinfo/mozilla-crypto
