e4653042f2
caps/include/nsScriptSecurityManager.h caps/src/nsScriptSecurityManager.cpp modules/libpref/src/init/all.js Fix 24565 nsScriptSecurityManager::GetSecurityLevel() is a performance 24567 re-write DOM glue security checks to avoid NS_WITH_SERVICE() r=waterson Files: dom/src/base/nsGlobalWindow.cpp layout/base/src/nsDocument.cpp layout/base/src/nsGenericElement.cpp Fix assertion failure for 1-character property names. Files: dom/src/jsurl/nsJSProtocolHandler.cpp webshell/src/nsDocLoader.cpp Fix 18653 "javascript:" URLs cross windows problems (probably regressi r=nisheeth Files: layout/events/src/nsEventListenerManager.cpp Fix 23834 document.onkeypress allows sniffing keystrokes 24152 document.onclick shows links from other window r=joki git-svn-id: svn://10.0.0.236/trunk@58429 18797224-902f-48f8-a5cc-f745e15eee43
102 lines
3.0 KiB
C++
102 lines
3.0 KiB
C++
/* -*- Mode: C++; tab-width: 2; indent-tabs-mode: nil; c-basic-offset: 2 -*-
|
|
*
|
|
* The contents of this file are subject to the Netscape Public
|
|
* License Version 1.1 (the "License"); you may not use this file
|
|
* except in compliance with the License. You may obtain a copy of
|
|
* the License at http://www.mozilla.org/NPL/
|
|
*
|
|
* Software distributed under the License is distributed on an "AS
|
|
* IS" basis, WITHOUT WARRANTY OF ANY KIND, either express or
|
|
* implied. See the License for the specific language governing
|
|
* rights and limitations under the License.
|
|
*
|
|
* The Original Code is mozilla.org code.
|
|
*
|
|
* The Initial Developer of the Original Code is Netscape
|
|
* Communications Corporation. Portions created by Netscape are
|
|
* Copyright (C) 1998-1999 Netscape Communications Corporation. All
|
|
* Rights Reserved.
|
|
*
|
|
* Contributor(s):
|
|
*/
|
|
#ifndef _NS_SCRIPT_SECURITY_MANAGER_H_
|
|
#define _NS_SCRIPT_SECURITY_MANAGER_H_
|
|
|
|
#include "nsIScriptSecurityManager.h"
|
|
#include "nsIPrincipal.h"
|
|
#include "jsapi.h"
|
|
#include "nsIXPCSecurityManager.h"
|
|
#include "nsHashtable.h"
|
|
#include "nsDOMPropEnums.h"
|
|
#include "nsCOMPtr.h"
|
|
|
|
class nsIPref;
|
|
|
|
#define NS_SCRIPTSECURITYMANAGER_CID \
|
|
{ 0x7ee2a4c0, 0x4b93, 0x17d3, \
|
|
{ 0xba, 0x18, 0x00, 0x60, 0xb0, 0xf1, 0x99, 0xa2 }}
|
|
|
|
class nsScriptSecurityManager : public nsIScriptSecurityManager,
|
|
public nsIXPCSecurityManager
|
|
{
|
|
public:
|
|
nsScriptSecurityManager();
|
|
virtual ~nsScriptSecurityManager();
|
|
|
|
NS_DEFINE_STATIC_CID_ACCESSOR(NS_SCRIPTSECURITYMANAGER_CID)
|
|
|
|
NS_DECL_ISUPPORTS
|
|
NS_DECL_NSISCRIPTSECURITYMANAGER
|
|
NS_DECL_NSIXPCSECURITYMANAGER
|
|
|
|
static nsScriptSecurityManager *
|
|
GetScriptSecurityManager();
|
|
|
|
private:
|
|
void
|
|
LookupPrincipal(nsCOMPtr<nsIPrincipal>* aPrincipal);
|
|
|
|
NS_IMETHOD
|
|
GetSubjectPrincipal(JSContext *aCx, nsIPrincipal **result);
|
|
|
|
NS_IMETHOD
|
|
GetObjectPrincipal(JSContext *aCx, JSObject *aObj, nsIPrincipal **result);
|
|
|
|
NS_IMETHOD
|
|
CheckPermissions(JSContext *aCx, JSObject *aObj, const char *aCapability,
|
|
PRBool* result);
|
|
PRInt32
|
|
GetSecurityLevel(nsIPrincipal *principal, nsDOMProp domProp,
|
|
PRBool isWrite, nsCString &capability);
|
|
|
|
NS_IMETHOD
|
|
GetPrefName(nsIPrincipal *principal, nsDOMProp domProp,
|
|
nsCString &result);
|
|
|
|
NS_IMETHOD
|
|
CheckXPCPermissions(JSContext *cx);
|
|
|
|
NS_IMETHOD
|
|
InitFromPrefs();
|
|
|
|
static void
|
|
enumeratePolicyCallback(const char *prefName, void *data);
|
|
|
|
static void
|
|
enumeratePrincipalsCallback(const char *prefName, void *data);
|
|
|
|
static int
|
|
JSEnabledPrefChanged(const char *pref, void *data);
|
|
|
|
nsObjectHashtable *mOriginToPolicyMap;
|
|
nsIPref *mPrefs;
|
|
nsIPrincipal *mSystemPrincipal;
|
|
nsSupportsHashtable *mPrincipals;
|
|
PRBool mIsJavaScriptEnabled;
|
|
PRBool mIsMailJavaScriptEnabled;
|
|
unsigned char hasPolicyVector[(NS_DOM_PROP_MAX >> 3) + 1];
|
|
unsigned char hasDomainPolicyVector[(NS_DOM_PROP_MAX >> 3) + 1];
|
|
};
|
|
|
|
#endif /*_NS_SCRIPT_SECURITY_MANAGER_H_*/
|