Boris Zbarsky wrote:
I'd like to propose a new protocol handler flag:
URI_HAS_NO_SECURITY_CONTEXT
to be used by protocols whose URI does not carry any inherent security
context and should instead "inherit" some sort of context. Specific
examples are: data:, javascript:, external protocol handler.
This flag sounds like a good idea to me (although I'm not sure why the
external protocol handler needs it). It probably needs a better
description though... What does "having an inherent security context"
mean really?
_______________________________________________
dev-tech-network mailing list
[email protected]
https://lists.mozilla.org/listinfo/dev-tech-network
