You may be able to work around it in the interim by using a client-side redirect (meta refresh); I _think_ that won't set the originalURI to anything untoward, unlike this case.
Could you explain this a little, I don't know what you mean here.
BTW is it normal for a signed jar app served over SSL to not show up as 'secure' (meaning with padlock icon closed). The Mozilla 'Page Info' dialog security tab says:
Web Site Identity Not Verified
-
Connection Not Encrypted
That also sounds like a bug. Do you have a bugzilla account? If so, could you file it (and cc me on it, please)? If not, let me know and I'll try to file it for you.
I appear to have a bugzilla account. I don't remember creating it.
netscape.security.PrivilegeManager .enablePrivilege("UniversalXPConnect"); the popup says: A script from "" has requested... Note the value in quotes is blank.
That should be getting the "common name" from the cert if there is one (and using the full jar: URI otherwise). Your cert does have a common name that works fine (if I load <https://pg2.arcamax.com/moztest.jar> and look at the page info), so I'm guessing the problem is on our end. Again, a testcase that can be directly debugged on would be very helpful.
I have created a new version of the moztest.jar here: jar:https://secure.arcamax.com/moztest/moztest.jar!/test.xul The root CA cert for this file is here: https://secure.arcamax.com/moztest/amirootca.cacert
The OnLoad event handler now looks like this:
---
function OnLoad()
{
alert("Before Priv. Request"); netscape.security.PrivilegeManager
.enablePrivilege("UniversalXPConnect");alert("After Priv. Request");
}
---
Unfortunatly I can't test the privilege dialog box. The last time I used it, I checked the box to rememeber the decision and I don't know how to reset that decision. I tried removing my object signing certificate and removing and reinstalling the root certificate. I suppose I could generate a new set of certificates and/or create a new profile. If you could tell me how best to reset this above setting, I will test the script and file the bug.
Bryan White _______________________________________________ Mozilla-netlib mailing list [EMAIL PROTECTED] http://mail.mozilla.org/listinfo/mozilla-netlib
