7
edits
Security/Reviews/Firefox6/ReviewNotes/ServerDomEvents: Difference between revisions
Security/Reviews/Firefox6/ReviewNotes/ServerDomEvents (view source)
Revision as of 23:45, 1 July 2011
, 1 July 2011→Questions
No edit summary |
|||
| Line 35: | Line 35: | ||
** Do we want to consider https-using-http to be "mixed display" (allowed) or "mixed scripting" (blocked) when we adopt this distinction from chromium? (how about equivalent to XHR -- then we can deal with them together -- probably "mixed scripting") | ** Do we want to consider https-using-http to be "mixed display" (allowed) or "mixed scripting" (blocked) when we adopt this distinction from chromium? (how about equivalent to XHR -- then we can deal with them together -- probably "mixed scripting") | ||
* can file:// urls construct an EventSource object ? (MIME type should stop this, since the local file won't have the magic text/eventsource MIME type) | * can file:// urls construct an EventSource object ? (MIME type should stop this, since the local file won't have the magic text/eventsource MIME type) | ||
** FF aborts with "Firefox can't establish a connection to server at ..." | |||
* interaction with bfcache? | * interaction with bfcache? | ||
** frozen document gets its connections closed. thawed document gets reconnected. | ** frozen document gets its connections closed. thawed document gets reconnected. | ||