Bug 333922 - Setting designMode doesn't work with enhanced privileges on a frame with a different domain, r+sr=bzbarsky

git-svn-id: svn://10.0.0.236/trunk@199691 18797224-902f-48f8-a5cc-f745e15eee43
2006-06-12 08:55:37 +00:00
parent 3f2fc132d5
commit 473ab4d909
1 changed files with 10 additions and 7 deletions
--- a/mozilla/content/html/document/src/nsHTMLDocument.cpp
+++ b/mozilla/content/html/document/src/nsHTMLDocument.cpp
@@ -3673,13 +3673,16 @@ nsHTMLDocument::SetDesignMode(const nsAString & aDesignMode)
    return NS_ERROR_FAILURE;

  nsresult rv = NS_OK;
-  nsCOMPtr<nsIPrincipal> subject;
-  nsIScriptSecurityManager *secMan = nsContentUtils::GetSecurityManager();
-  rv = secMan->GetSubjectPrincipal(getter_AddRefs(subject));
-  NS_ENSURE_SUCCESS(rv, rv);
-  if (subject) {
-     rv = secMan->CheckSameOriginPrincipal(subject, NodePrincipal());
-     NS_ENSURE_SUCCESS(rv, rv);
+
+  if (!nsContentUtils::IsCallerTrustedForWrite()) {
+    nsCOMPtr<nsIPrincipal> subject;
+    nsIScriptSecurityManager *secMan = nsContentUtils::GetSecurityManager();
+    rv = secMan->GetSubjectPrincipal(getter_AddRefs(subject));
+    NS_ENSURE_SUCCESS(rv, rv);
+    if (subject) {
+      rv = secMan->CheckSameOriginPrincipal(subject, NodePrincipal());
+      NS_ENSURE_SUCCESS(rv, rv);
+    }
  }

  nsCOMPtr<nsIEditingSession> editSession = do_GetInterface(docshell);