7e6a232b92
Bug 956382 - Remove implementations of *IgnoringDomain variants. r=mrbkap
2014-02-13 18:57:36 -08:00
0efcb609ad
Bug 956382 - Ignore document.domain by default. r=mrbkap
2014-02-13 18:57:36 -08:00
c5505c6f3d
Bug 956382 - Introduce an explicit API to do principal checks with document.domain. r=mrbkap
2014-02-13 18:57:34 -08:00
041e66aa0e
Bug 913734 - Remove now-unused policy machinery. r=mrbkap
2013-12-13 19:15:43 -08:00
e9492bcd36
Bug 785884 - Implement support for temporary storage (aka shared pool). r=ehsan, r=bent
...
--HG--
rename : caps/tests/mochitest/test_principal_extendedorigin_appid_appstatus.html => caps/tests/mochitest/test_principal_jarprefix_origin_appid_appstatus.html
rename : dom/quota/UsageRunnable.h => dom/quota/UsageInfo.h
2013-09-11 06:18:36 +02:00
01c70c8c97
Bug 911020 - Introduce js/TypeDecls.h, which holds very commonly used type declarations from the JS engine. r=luke.
...
--HG--
extra : rebase_source : 008ef689989f93b46627b8be8608bdbc544ca3a2
2013-08-27 19:59:14 -07:00
9b971f4a50
Bug 829872 - Add convenience version of Equals/Subsumes to nsIPrincipal. r=bz
2013-05-03 14:47:09 -07:00
494bd17ae6
Bug 793204 - Add remove() API to PermissionSettings. r=sicking
2013-01-26 12:56:23 -05:00
2967d1c275
Bug 752529 - workers shouldn't use string origins as null principals don't have them. Part 1 - nsPrincipal IDL changes (r=bz)
2013-01-08 13:53:29 -08:00
61b2f24e97
Bug 802366 - Prelude, part 3: Make some methods on nsIPrincipal infallible, and improve documentation on other methods. r=bz
2012-11-10 10:32:36 -08:00
3eff16d324
Backed out 12 changesets (bug 806127, bug 802366, bug 806168) for Windows build bustage.
...
--HG--
rename : dom/indexedDB/test/webapp_clearBrowserData.js => dom/indexedDB/test/test_webapp_clearBrowserData.html
2012-11-09 20:14:40 -05:00
b077612b12
Bug 802366 - Prelude, part 3: Make some methods on nsIPrincipal infallible, and improve documentation on other methods. r=bz
2012-11-09 16:37:38 -08:00
b1a3876e0a
Backed out changeset 212e1383eb6e (bug 802366)
2012-10-30 21:36:32 -04:00
f0cecd2f62
Bug 802366 - Prelude, part 3: Make some methods on nsIPrincipal infallible, and improve documentation on other methods. r=bz
...
--HG--
extra : rebase_source : fecd856eee53b99a2a306b4005f2bb3b84c1cfb3
2012-10-30 15:55:05 -04:00
6ec6990ee3
Bug 777467 - Update the same-origin policy for principals to include appid/isinbrowserelement. r=bholley
2012-10-24 18:50:25 +01:00
5e8d8d57f2
Bug 786295 - 'Delete IndexedDB related to an app when uninstalled'. r=bz+khuey+sicking.
2012-10-23 09:31:19 -07:00
2b9a444397
Back out fb62d8b9800a (bug 777467) because of debug browser-chrome crashes on a CLOSED TREE
2012-10-22 09:52:35 -07:00
90d903b98e
Bug 777467 - Update the same-origin policy for principals to include appid/isinbrowserelement. r=bholley
2012-10-22 16:20:38 +01:00
10241f928c
Bug 789224 - Separate certificate principals out from CAPS. r=dveditz
...
There's no longer any reason why "certificate principals" need to be principals at all.
I tried to rip them out entirely, but it looks like they're still used vestigially at XPI
install time to display author information. But there's no reason that they have to be
porkbarreled into the security-critical objects that we pass around all over the place.
So let's make them their own deal.
I was tempted to call them "certificate holders", but that would involve renaming methods and
cause more compat fuss than necessary.
--HG--
rename : caps/idl/nsISignatureVerifier.idl => security/manager/ssl/public/nsISignatureVerifier.idl
2012-10-22 08:29:56 +02:00
f2f61ba43b
Bug 789224 - Remove principal capability and preference infrastructure. r=mrbkap
2012-10-22 08:29:55 +02:00
2f108ae5fb
Bug 779809 part 1 - Make [notxpcom] attributes an error; r=khuey
2012-08-09 11:31:14 +03:00
a3f5cf2545
Bug 768029 - Apply CSP Policy to trusted and certified apps. Temporarily using a overly permissive policy for certified apps until Gaia is updated to handle the desired policy. r=sicking Parts by sicking, r=mounir
2012-09-25 16:28:17 -07:00
50698ed746
Backout Bug 768029 because that breaks Gaia (see https://github.com/mozilla-b2g/gaia/issues/5177 )
2012-09-25 15:32:20 -07:00
cf8d576337
bug 768029 - Apply CSP Policy to trusted and certified apps. r=sicking. Parts by sicking, r=mounir.
2012-08-02 12:13:53 -07:00
e368dc9c85
Bug 579517 - Part 1: Automated conversion of NSPR numeric types to stdint types in Gecko; r=bsmedberg
...
This patch was generated by a script. Here's the source of the script for
future reference:
function convert() {
echo "Converting $1 to $2..."
find . ! -wholename "*nsprpub*" \
! -wholename "*security/nss*" \
! -wholename "*/.hg*" \
! -wholename "obj-ff-dbg*" \
! -name nsXPCOMCID.h \
! -name prtypes.h \
-type f \
\( -iname "*.cpp" \
-o -iname "*.h" \
-o -iname "*.c" \
-o -iname "*.cc" \
-o -iname "*.idl" \
-o -iname "*.ipdl" \
-o -iname "*.ipdlh" \
-o -iname "*.mm" \) | \
xargs -n 1 sed -i -e "s/\b$1\b/$2/g"
}
convert PRInt8 int8_t
convert PRUint8 uint8_t
convert PRInt16 int16_t
convert PRUint16 uint16_t
convert PRInt32 int32_t
convert PRUint32 uint32_t
convert PRInt64 int64_t
convert PRUint64 uint64_t
convert PRIntn int
convert PRUintn unsigned
convert PRSize size_t
convert PROffset32 int32_t
convert PROffset64 int64_t
convert PRPtrdiff ptrdiff_t
convert PRFloat64 double
2012-08-22 11:56:38 -04:00
01a802da01
Bug 341604 - modify CheckMayLoad to allow sandboxed workers to load blob and data URIs r=jst
2012-08-20 11:34:33 -07:00
f813f6360a
Bug 777135 - Part 1: Add nice C++ version of nsIPrincipal::GetAppStatus. r=mounir
...
--HG--
extra : rebase_source : 6150a2b708faa41f1f6c7723260fc52444b7ea8d
2012-08-13 12:58:38 -04:00
894868aa63
Bug 781224 - Rename APP_STATUS_TRUSTED to APP_STATUS_PRIVILEGED in nsIPrincipal [r=mounir]
2012-08-08 10:21:54 -07:00
53e0011130
No bug - Fix error in nsIPrincipal comment (it's nsIScriptSecurityManager::NO_APP_ID, not nsIAppsService::NO_APP_ID). r=me DONTBUILD
2012-08-06 00:31:22 -04:00
69647e26b0
Bug 776824 - Add isInBrowserElement to nsIPrincipal. r=mrbkap sr=sicking
2012-07-31 17:47:20 +02:00
99b949ad17
Bug 758258 - part 3 - Add extendedOrigin, appStatus and appId to nsIPrincipal. r=bholley sr=sicking
2012-07-19 22:44:03 -07:00
5f2a19ee6e
Revert c39d36167b99 due to a horribly munged backout.
2012-06-10 19:44:50 -04:00
6d6c4efbab
Backout the bug 754202 backout due to orange.
2012-06-10 19:37:47 -04:00
a4d0a2ae65
Bug 734891 - part 2: Adding ExpandedPrincipal support
2012-06-09 15:19:26 -07:00
82ff7027aa
Bug 716478 - update licence to MPL 2.
2012-05-21 12:12:37 +01:00
710c5cfdb0
Bug 750859 - Remove {Disable,Revert}Capability. r=bz, PGO helper on CLOSED TREE
2012-05-02 23:57:43 +02:00
e6e34db54d
Bug 750859 - Remove (most of) SetCanEnableCapability. r=bz
2012-05-02 23:57:34 +02:00
524dbd7e47
bug 728250 - remove JSPrincipals::codebase. r=:luke,:bz
...
In just 2 cases where JSPrincipals::codebase is used it can be reconstructed from the values stored in the associated nsJSPrincipal. In addition the patch makes nsJSprincipals to inherit both from nsIPrincipal and JSPrincipals allowing to use static_cast to convert between nsIPrincipal and JSPrincipals pointers and to drop many cases of manual JSPrincipal reference counting.
2012-03-09 10:48:50 +01:00
199e57e8b9
Bug 495337 - Make sessionStorage use principals instead of string domains, r=bz+bclary
2012-02-23 18:41:25 +01:00
e73d3d7ecd
Fix bug 657267. r=bz
2011-05-19 13:31:54 +02:00
a3601eb64c
Bug 619800 - Enable scriptability for nsIPrincipal methods. r+sr+a=bz.
2010-12-22 15:58:22 +02:00
7252ce7760
Bug 515437 CSP connection code, r=jst,dveditz sr=jst
2010-01-22 13:38:21 -08:00
153553d9b6
Backed out changeset a6ce37b09cf5 because of possible Tp4 perf hit
2010-01-14 17:19:11 -08:00
f2cab6a506
bug 515433, bug 515437: Content Security Policy (CSP) core
2010-01-13 14:18:24 -08:00
ac0964e5c0
Fixing bug 442399. Remove LiveConnect from the tree. r=joshmoz@gmail.com, bclary@bclary.com, sr=brendan@mozilla.org
2009-06-30 15:55:16 -07:00
ab63fc8524
Followup patch to bug 425201. Make sure to throw if xhr.open is called with an illegal uri. Also restore the nsIScriptSecurityManager.CheckConnect API as soap still uses it
2008-04-18 10:35:55 -07:00
9552bd91fc
Bug 413161: Make nsIPrincipal::Origin ignore changes to document.domain. r/sr=dveditz
2008-03-18 17:27:56 -07:00
57ac4a582f
Bug 420081 - "Case mismatch between nsIURI and nsIUri in nsIPrincipal.idl" [p=mschroeder@mozilla.x-home.org (Martin Schröder [mschroeder]) r+sr=jst a1.9=beltzner]
2008-03-08 03:20:21 -08:00
28ea51311b
Bug 416534: Clean up cross-site xmlhttprequest security checks. With fixes to tests this time. r/sr=peterv
2008-02-26 19:45:29 -08:00
7aff03fc46
backing out fix for bug 416534 as potential cause of mochitest failure
2008-02-26 19:23:36 -08:00
Bobby Holley
Jan Varga
Nicholas Nethercote
Reuben Morais
Ian Melven
Justin Lebar
Ryan VanderMeulen
Mounir Lamouri
Ben Turner
Matt Brubeck
Aryeh Gregor
Sid Stamm
Fabrice Desré
Ehsan Akhgari
Gabor Krizsanits
Gervase Markham
Igor Bukanov
Honza Bambas
Blake Kaplan
Asaf Romano
Daniel Veditz
Johnny Stenback
jonas@sicking.cc
reed@reedloden.com
myk@mozilla.org