[Typo3-dev] Information request about signed scripts
Stanislas Rolland
stanislas.rolland at fructifor.com
Sun Feb 6 05:02:31 CET 2005
Hi Dan and Masi,
> Dan Jensen wrote:
> >>The point is that Firefox' and Mozillas security model prohibit unsigned
> >>access to the clipboard (and other local resources).
> >>
> >>To overcome this problem the script has either to be signed or the user
> >>must lower manually the security settings. It is possible to allow
> >>scripts from certain sites to gain access to local resources. To do this
> >>the file user.js in the profile must be changed. This is awkward and
> >>obviously meant only for developing.
> >
Thanks for all the information.
The latest version of htmlArea RTE generates a Firefox/Mozilla extension that automates the creation of a user.js file in the current user's profile. The extension is installed only if the user explicitly agrees by replying when prompted for his permission to proceed. The user must also set his browser to accept installation of software originating from the TYPO3 site. For the time being, the extension is not signed. After installing the extension and restarting the browser, scripts originating from the TYPO3 site are granted access to the clipboard.
Stanislas
-----------------------
This thread is located in the archive at this URL:
http://typo3.org/documentation/mailing-lists/dev-list-archive/thread/110109162/
More information about the TYPO3-dev
mailing list