gecko-dev

mirror of https://github.com/mozilla/gecko-dev.git synced 2024-10-10 03:45:46 +00:00

Author	SHA1	Message	Date
Bobby Holley	83245872f0	Bug 754202 - Remove context pushing/popping API. r=mrbkap Each one of these uses grabs the principal off of an object for pushing, but also enters the compartment of that object. So we shouldn't need this anymore. Can I get a 'hell yeah'?	2012-06-28 23:47:55 +02:00
L. David Baron	ca009b979f	Backout bug 754202 (all patches, rather than just patches 3-7).	2012-06-10 17:22:31 -07:00
Ryan VanderMeulen	0ec5784959	Backout 90107a2a0c64 (bug 754202) for real due to orange.	2012-06-10 19:46:20 -04:00
Ryan VanderMeulen	5f2a19ee6e	Revert c39d36167b99 due to a horribly munged backout.	2012-06-10 19:44:50 -04:00
Ryan VanderMeulen	6d6c4efbab	Backout the bug 754202 backout due to orange.	2012-06-10 19:37:47 -04:00
Bobby Holley	75ea89c874	Merge backout.	2012-06-11 00:28:30 +02:00
Bobby Holley	b65e3d0fc1	Back out bug 754202. r=me	2012-06-11 00:28:05 +02:00
Gabor Krizsanits	a4d0a2ae65	Bug 734891 - part 2: Adding ExpandedPrincipal support	2012-06-09 15:19:26 -07:00
Bobby Holley	3065c84571	Bug 754202 - Remove context pushing/popping API. r=mrbkap Each one of these uses grabs the principal off of an object for pushing, but also enters the compartment of that object. So we shouldn't need this anymore. Can I get a 'hell yeah'?	2012-06-07 14:28:21 +02:00
Gervase Markham	82ff7027aa	Bug 716478 - update licence to MPL 2.	2012-05-21 12:12:37 +01:00
Bobby Holley	710c5cfdb0	Bug 750859 - Remove {Disable,Revert}Capability. r=bz, PGO helper on CLOSED TREE	2012-05-02 23:57:43 +02:00
Bobby Holley	e6e34db54d	Bug 750859 - Remove (most of) SetCanEnableCapability. r=bz	2012-05-02 23:57:34 +02:00
Igor Bukanov	524dbd7e47	bug 728250 - remove JSPrincipals::codebase. r=:luke,:bz In just 2 cases where JSPrincipals::codebase is used it can be reconstructed from the values stored in the associated nsJSPrincipal. In addition the patch makes nsJSprincipals to inherit both from nsIPrincipal and JSPrincipals allowing to use static_cast to convert between nsIPrincipal and JSPrincipals pointers and to drop many cases of manual JSPrincipal reference counting.	2012-03-09 10:48:50 +01:00
Honza Bambas	199e57e8b9	Bug 495337 - Make sessionStorage use principals instead of string domains, r=bz+bclary	2012-02-23 18:41:25 +01:00
Blake Kaplan	e73d3d7ecd	Fix bug 657267. r=bz	2011-05-19 13:31:54 +02:00
timeless@mozdev.org	eb6bf14c5f	Bug 584977 mark deprecated caps interfaces and methods with [deprecated] r=dveditz	2011-03-27 23:59:17 -04:00
Asaf Romano	a3601eb64c	Bug 619800 - Enable scriptability for nsIPrincipal methods. r+sr+a=bz.	2010-12-22 15:58:22 +02:00
Boris Zbarsky	7e4b4c8184	Bug 593026. Make it possible to get the system principal from script. r=jst a=jst	2010-09-07 15:10:41 -04:00
Luke Wagner	7371ad00ed	Bug 549143 - fatvals	2010-07-14 23:19:36 -07:00
Robert Sayre	5da1b58f01	Merge mozilla-central to tracemonkey	2010-05-17 13:55:37 -04:00
Jason Orendorff	1e779602f9	Bug 560643 - Add a special jsval type to XPIDL. Part 1, rename JSVal -> jsval in existing IDL. r+sr=jst. --HG-- extra : rebase_source : 3d50f7468277883a26790df13a639ce37757a257	2010-05-12 08:18:51 -05:00
Michael Kohler	6c0f59f4a6	Bug 506041 Part 2: Correct misspellings in source code r=timeless	2010-05-13 14:19:50 +02:00
Jonas Sicking	893023f46a	Bug 543696: Remove unused nsIScriptSecurityManager::CheckConnect. r/sr=mrbkap	2010-02-02 02:29:15 -08:00
Sid Stamm	7252ce7760	Bug 515437 CSP connection code, r=jst,dveditz sr=jst	2010-01-22 13:38:21 -08:00
Daniel Veditz	153553d9b6	Backed out changeset a6ce37b09cf5 because of possible Tp4 perf hit	2010-01-14 17:19:11 -08:00
Sid Stamm ext:(%2C%20Brandon%20Sterne%20%3Cbsterne%40mozilla.com%3E)	f2cab6a506	bug 515433, bug 515437: Content Security Policy (CSP) core	2010-01-13 14:18:24 -08:00
Blake Kaplan	7050590b13	Bug 504021 - Add an API to the script security manager to clamp principals for a given context. r=jst/bzbarsky sr=dveditz	2009-08-21 18:20:20 -07:00
Johnny Stenback	ac0964e5c0	Fixing bug 442399. Remove LiveConnect from the tree. r=joshmoz@gmail.com, bclary@bclary.com, sr=brendan@mozilla.org	2009-06-30 15:55:16 -07:00
Blake Kaplan	d897bc426d	Bug 396851 - Check to see if we're UniversalXPConnect-enabled to allow privileged web pages to unwrap XOWs. r+sr=bzbarsky	2008-10-22 13:15:22 -07:00
jonas@sicking.cc	ab63fc8524	Followup patch to bug 425201. Make sure to throw if xhr.open is called with an illegal uri. Also restore the nsIScriptSecurityManager.CheckConnect API as soap still uses it	2008-04-18 10:35:55 -07:00
jonas@sicking.cc	ec7a19c8b9	Allow XMLHttpRequest and document.load load files from subdirectories. r/sr=dveditz	2008-04-08 17:38:12 -07:00
jonas@sicking.cc	9552bd91fc	Bug 413161: Make nsIPrincipal::Origin ignore changes to document.domain. r/sr=dveditz	2008-03-18 17:27:56 -07:00
bzbarsky@mit.edu	94a044f0b1	Finally kill off CheckSameOriginPrincipal, fix remaining callers to do the checks they really want to be doing. Fix screw-up in nsPrincipal::Equals if one principal has a cert and the other does not. Bug 418996, r=mrbkap,dveditz, sr=jst	2008-03-18 14:14:49 -07:00
reed@reedloden.com	57ac4a582f	Bug 420081 - "Case mismatch between nsIURI and nsIUri in nsIPrincipal.idl" [p=mschroeder@mozilla.x-home.org (Martin Schröder [mschroeder]) r+sr=jst a1.9=beltzner]	2008-03-08 03:20:21 -08:00
jonas@sicking.cc	28ea51311b	Bug 416534: Clean up cross-site xmlhttprequest security checks. With fixes to tests this time. r/sr=peterv	2008-02-26 19:45:29 -08:00
myk@mozilla.org	7aff03fc46	backing out fix for bug 416534 as potential cause of mochitest failure	2008-02-26 19:23:36 -08:00
jonas@sicking.cc	42bbc8327e	Bug 416534: Clean up cross-site xmlhttprequest security checks. r/sr=peterv	2008-02-26 18:17:49 -08:00
jst@mozilla.org	f0f4a78cce	Fixing bug 410851. Expose a faster way of getting the subject principal, and use that from performance critical code. r+sr=mrbkap@gmail.com	2008-01-04 15:59:12 -08:00
jonas@sicking.cc	4c1a3910ac	bug 394390: Don't report bogus warnings to the error console when using cross-site xmlhttprequest. Patch by Surya Ismail <suryaismail@gmail.com>, r/sr=sicking	2007-10-26 18:46:09 -07:00
bzbarsky@mit.edu	647cbff151	Make security manager API more useful from script. Make more things scriptable, and add a scriptable method for testing whether a given principal is the system principal. Bug 383783, r=dveditz, sr=jst	2007-06-18 08:12:09 -07:00
hg@mozilla.com	05e5d33a57	Free the (distributed) Lizard! Automatic merge from CVS: Module mozilla: tag HG_REPO_INITIAL_IMPORT at 22 Mar 2007 10:30 PDT,	2007-03-22 10:30:00 -07:00
bzbarsky%mit.edu	d9f9d475bb	When getting codebase principals, install the passed-in codebase on them even if they come from the hashtable. Bug 269270, r=dveditz, sr=jst.	2007-02-09 04:52:44 +00:00
bzbarsky%mit.edu	8a1b6c5e34	Make the redirect check get principals the same way we get them elsewhere. Clean up some code to use the new security manager method. Bug 354693, r=dveditz, sr=sicking	2006-11-22 18:27:54 +00:00
bzbarsky%mit.edu	730516b0a1	Remove securityCompareURIs() from nsIScriptSecurityManager. Bug 327243, r+sr=jst	2006-11-14 22:46:45 +00:00
bzbarsky%mit.edu	0a3a624149	Make it possible for protocol handlers to configure how CheckLoadURI should treat them via their protocol flags. Remove the protocol list we used before. Bug 120373, r=dveditz, sr=darin	2006-11-10 23:49:08 +00:00
cbiesinger%web.de	74a2a1d30c	Bug 351876 Move nsICryptoHash into necko r=darin	2006-09-15 22:06:31 +00:00
bzbarsky%mit.edu	50e969de0c	Introduce CheckLoadURIStrWithPrincipal(). Bug 348559, r=dveditz, sr=jst	2006-08-21 22:15:20 +00:00
bzbarsky%mit.edu	c44462a922	Followup to bug 326506 -- this comment got lost somehow.	2006-04-02 22:00:08 +00:00
bzbarsky%mit.edu	52c46b8f53	Make nsIPrincipal and some methods that use it scriptable. Bug 327242, r=jst, sr=dveditz	2006-02-17 16:12:17 +00:00
bzbarsky%mit.edu	18fc300f0b	Backing out since tree is closed.	2006-02-17 03:33:03 +00:00

1 2 3 4

155 Commits