You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Could I elevate the privilege of an iframe so it can load dtds to its src?
Just like this function did with the XMLHttpRequest()?
fetchOverlay(srcUrl){if(!srcUrl.startsWith("chrome://")&&!srcUrl.startsWith("resource://")){thrownewError("May only load overlays from chrome:// or resource:// uris");}letxhr=newthis.window.XMLHttpRequest();xhr.overrideMimeType("application/xml");xhr.open("GET",srcUrl,false);// Elevate the request, so DTDs will work. Should not be a security issue since we// only load chrome, resource and file URLs, and that is our privileged chrome package.try{xhr.channel.owner=Services.scriptSecurityManager.getSystemPrincipal();}catch(ex){oconsole.error("Failed to set system principal while fetching overlay "+srcUrl);xhr.close();thrownewError("Failed to set system principal");}xhr.send(null);returnxhr;}
The text was updated successfully, but these errors were encountered:
Could I elevate the privilege of an iframe so it can load dtds to its src?
Just like this function did with the XMLHttpRequest()?
The text was updated successfully, but these errors were encountered: