FirefoxOS/New security model/Packaging: Difference between revisions

(→‎Example: change moz-permission to permission)
 
Line 62: Line 62:
Signed packages must contain a package-identifier field. The unique identifier for a signed package which is used to denote it unique for a given web origin (ie example.com!app1). NOTE: Marketplace will supply this for production packages.
Signed packages must contain a package-identifier field. The unique identifier for a signed package which is used to denote it unique for a given web origin (ie example.com!app1). NOTE: Marketplace will supply this for production packages.


=== ''moz-permissions''===
=== ''permissions''===
We need the permissions of the signed package so in order to know what permissions to grant to the new process.
We need the permissions of the signed package so in order to know what permissions to grant to the new process.
=== ''moz-resources''===
=== ''moz-resources''===
We add a ''resources'' section to the app manifest which enumerates content which needs to have integrity check. All resources are specified by relative URIs and meaning they must reside inside the package.
We add a ''resources'' section to the app manifest which enumerates content which needs to have integrity check. All resources are specified by relative URIs and meaning they must reside inside the package.
93

edits