- From: Jonas Sicking <jonas@sicking.cc>
- Date: Fri, 23 Apr 2010 09:14:36 -0700
On Thu, Apr 22, 2010 at 5:05 PM, Charles Pritchard <chuck at jumis.com> wrote: > On 4/20/10 7:18 AM, Charles Pritchard wrote: >>> >>> / Proposed method: > > />>/ CanvasRenderingContext2D > />/> resetOriginClean > />/> throws SECURITY_ERR exception > />>/ > />/> When resetOriginClean is executed, an implementation shall request > elevated > />/> privileges, and if granted, set the origin-clean flag of the canvas > />/> element to true. > /> >> >> Mozilla almost certainly not be willing to implement such a method. >> -Boris > > > Well... as that idea has been torpedoed, what/where is current work > being done to unify privilege escalation? > > ... > > Boris, you haven't provided me with any reasoning/room to address the issue. > > In general use resetOriginClean would just throw a security error. > It'd only prompt the user for permissions in the same cases that > enablePrivilege does. For what it's worth, we consider enablePrivilege to be a horrible solution for basically any involved party (browser developer, user, and website author), and we're in the process of removing it. So saying that anything is like enablePrivilege is not a good argument :) / Jonas
Received on Friday, 23 April 2010 09:14:36 UTC