$Id: firefox.txt 1878 2008-07-03 23:39:11Z mjs $
HOWTO: Bypass/evade the same origin policy security restriction
(A manifestation of this is Firefox's "Permission denied to call method XMLHttpRequest.open" security exception.)
I never did completely figure this out, but the solution theoretically involves putting
user_pref("signed.applets.codebase_principal_support", true);
in prefs.js, then calling
netscape.security.PrivilegeManager.enablePrivilege("UniversalBrowserRead");
(pops up a confirmation dialog to the user) just before doing the call.
See:
- http://www.mozilla.org/projects/security/components/signed-scripts.html
- http://www.mozilla.org/projects/security/components/same-origin.html
- http://developer.mozilla.org/en/docs/BypassingSecurityRestrictionsandSigning_Code
HOWTO: Disable access keys (shortcuts)
To disable access keys, so
you aren't surprised when you hit Ctrl-P, etc. set the
ui.key.contentAccess preference (access via the URL
about:config) to 0.
