Hi all...
I'm currently developping a site with applets and Javascript to french government ( DGI ).
We have an applet for testing user browser config and know if his browser supports applet.
The jar is on a static server and our app is in another server...
When we try to call this applet we have the error :
sun.plugin.liveconnect.OriginNotAllowedException: JavaScript is not from the same origin as the Java code, caller=http://localhost:8080, callee=https://static.dev.dgi.minefi.gouv.fr:444/fakeTeleproc/adpform/reco.jar
Asuming You only run localhost for testing:
If the app is under dgi.minefi.gouv.fr:444, This (in the app befor using jar)
document.domain = "dgi.minefi.gouv.fr:444";
I'm not sure the port shuld be included.
If the port or protokoll is not the same, it will not work ass far ass I understand :-( If You are allowed to silently permit cross-scripting between different servers om the same domain, logicaly, You shuld be alowed to do it between ports and protocoll on the same server... But I have not found any way so far.
Se http://www.mozilla.org/projects/security/components/same-origin.html
I have make some research about this problem and see solution with enablePrivilege... But we try to do this and nothing change... With the javascript on the same server that applet --> same thing.
We have this problem on NS 7.1 and Mozilla 1.3.1. ( not on NS 7.2 ).
Can some help ??? We can't ask to our user to change Nescape config files ( user_pref ).
Thx for all infos.
Should work from different servers under the same domain sufix. But as long You test from localhost, preferens editing is probably needed.
Unless You sign the script and use enablePrivelege...
But the docs i have found on thees subjects are verry poor :-(
It's realy hard geting stuff to work!
HTH /LaH _______________________________________________ Mozilla-security mailing list [email protected] http://mail.mozilla.org/listinfo/mozilla-security
