save file query

Hi,

I'm working on a project where I need users to be able to save the 
source of an XML file to local disc. The only problem is that this XML 
file is generated dynamically (and locally) from form data and Mozilla 
refuses to save the file. It simply fails to bring up a save file dialog.

The local save is critical because, for security reasons, there will be 
no communication between this form and a web server.

Is this a bug or a feature, and if it's a feature does anyone have any 
thoughts about a possible solution.

Thanks,

Matt

--

-- 
    Matt Patterson | Typographer
    <maNGLEDtt <at> emdash.co.uk> | http://www.emdash.co.uk/
    <maNGLEDtt <at> reprocessed.org> | http://reprocessed.org/

Re: save file query

Matthew Patterson wrote:
> I'm working on a project where I need users to be able to save the 
> source of an XML file to local disc. The only problem is that this XML 
> file is generated dynamically (and locally) from form data and Mozilla 
> refuses to save the file. It simply fails to bring up a save file dialog.
> 
> The local save is critical because, for security reasons, there will be 
> no communication between this form and a web server.
> 
> Is this a bug or a feature, and if it's a feature does anyone have any 
> thoughts about a possible solution.

How exactly are you trying to get Mozilla to save this (locally 
generated) XML?

Re: save file query

Boris Zbarsky wrote:
> Matthew Patterson wrote:
> 
>> The local save is critical because, for security reasons, there will 
>> be no communication between this form and a web server.
> 
> How exactly are you trying to get Mozilla to save this (locally 
> generated) XML?

I don't know of any way to make javascript save the file, so I've been 
dumping it into a new window and trying to save it from file -> save 
page as.

The problem seems to be that the page has no true originating URL, 
instead it has a wyciyg:// protocol part (I've tried to find out about 
this but google isn't telling). If I view the source of the generated 
page and then copy, paste and save it in a text editor, and then open it 
again in Mozilla and try to save it works fine, which is why I thought 
it might a security thing.

Cheers,

Matt

--

-- 
    Matt Patterson | Typographer
    <maNGLEDtt <at> emdash.co.uk> | http://www.emdash.co.uk/
    <maNGLEDtt <at> reprocessed.org> | http://reprocessed.org/

query(counter signature)

Re: disable security

Hi!

At the beginning - thank you for reply, that is what I was looking for.
What I exactly need is to grant full privileges to one domain - my domain
with my scripts which I guarantee to my customers will not do anything more
than they are supposed to. I know, that solution is still far from secure in
case someone would spoof somehow my domain, but for my purpose I think it is
acceptable danger ;)
Anyway, I was thinking if this pref("...") stuff wouldn't do what I need,
unfortunately when I add the last of the lines (*.granted), the browser does
not start properly (tested on two recent source snapshots).
So I went back to modifying source code. In CheckPropertyAccessImpl
function - is there an easy way to extract the base url of the script
requesting access to properties? So I could just explicitly compare it with
my domain name.
It is probably not to hard to find it out, but as I didn't have much time
recently to delve into source, if you just know exactly how to do that I'd
be very obliged 

Regards
Hocus

> The simplest and most drastic change would be to open up
> mozilla/caps/src/nsScriptSecurityManager, and make the
> CheckPropertyAccessImpl function a no-op that always returns true. That
> will essentially disable all security and create a browser that's
> totally unsafe to be used on the public Internet.
>
> Or, you could make a more specific change. Try adding these lines to
> defaults/pref/all.js:
>
> pref("signed.applets.codebase_principal_support", true);
> pref("capability.principal.codebase.foo.id", "http://foo.com
> http://bar.com");
> pref("capability.principal.codebase.foo.granted", "UniversalBrowserRead
> UniversalBrowserWrite");
>
> Replace "http://foo.com http://bar.com" with a space-separated list of
> the hosts to which your Mozilla-based tool needs to connect.

Newbie needs help

I can't access my online banking with Netscape 7.0.  I am fairly new to 
Netscape ( I fooled around with 4.7).  I would love to switch from 
Bill's IE, but need to bank online.  Where do I start?
Larry H.

Re: Newbie needs help

In article <3D75F420.7000307 <at> optonline.net>, Larry H. wrote:
> I can't access my online banking with Netscape 7.0.  I am fairly new to 
> Netscape ( I fooled around with 4.7).  I would love to switch from 
> Bill's IE, but need to bank online.  Where do I start?

well you could start by posting in a more appropriate newsgroup - this
one, despite being badly named, is for developers... the groups for users
are listed at:
http://www.mozilla.org/start/1.0/faq/enduser.html#11.2

knowing which bank it is necessary to give specific answers. but the
chances are that your bank has designed their online banking to work in
internet explorer, and so it won't work in anything else.  the only
possible solutions are to convince your bank to redesign their system to
work with other browsers (there is a project for doing this kind of thing
- you can file a bug in bugzilla, if there isn't one already, to note the
fact that your bank is one which could use some help making their stuff
work with mozilla), or change to a bank that does work with mozilla.

--

-- 
michael

Re: Newbie needs help

In article <al4ucc$1nfbu6$1 <at> ID-106624.news.dfncis.de>, michael lefevre wrote:
> In article <3D75F420.7000307 <at> optonline.net>, Larry H. wrote:
>> I can't access my online banking with Netscape 7.0.  I am fairly new to 
>> Netscape ( I fooled around with 4.7).  I would love to switch from 
>> Bill's IE, but need to bank online.  Where do I start?
> 
> well you could start by posting in a more appropriate newsgroup - this
> one, despite being badly named, is for developers... the groups for users
> are listed at:
> http://www.mozilla.org/start/1.0/faq/enduser.html#11.2
[snip]

oops... most of what I wrote still applies, but the stuff about bugzilla
and the mozilla user groups obviously doesn't, because it's for a
different browser - start at http://www.ufaq.org/ instead...

--

-- 
michael

Re: Newbie needs help

michael lefevre wrote:

>In article <3D75F420.7000307 <at> optonline.net>, Larry H. wrote:
>  
>
>>I can't access my online banking with Netscape 7.0.  I am fairly new to 
>>Netscape ( I fooled around with 4.7).  I would love to switch from 
>>Bill's IE, but need to bank online.  Where do I start?
>>
What hgappes when you try to connect? What error message do you get?

>possible solutions are to convince your bank to redesign their system to
>work with other browsers (there is a project for doing this kind of thing
>- you can file a bug in bugzilla, if there isn't one already, to note the
>fact that your bank is one which could use some help making their stuff
>work with mozilla), or change to a bank that does work with mozilla.
>
Spoofing the User Agen might help. Get the UAtoolbar, which makes it
easy to set the UA as needed, and only when needed.

There are some NS4.x compatibility prefs that might help too.

If it works with the UA spoof, complain loudly to the bank,
that your browser works, if they would only change the
setting to allow you in.

    -Thomas

Re: save file query

Boris Zbarsky wrote:

> document.location.href =
>    "data:application/octet-stream;base64,"+btoa(mydata);
> 
> should do the job dandy in Mozilla...

Cool, thanks. It hadn't occured to me that I might be able to pour 
things into a document in quite that way. That's better than I'd hoped 
for by a long way!

Am I right in thinking it will only work in Mozilla 1.1? It fails in 1.0 
on PC and Mac OS X.

My only concern is that this method seems to have dropped from view - it 
's not in the fourth edition of the Rhino book, but was in the third 
edition, but this is getting off topic, so I'll stop.

> That's because it's an internal URI scheme in Mozilla... and pages with 
> this protocol scheme could not be saved for quite a while.  What exact 
> build of Mozilla are you using?

Mozilla 1.1, 20020826, on Mac OS X. Also tried with Mozilla 1.0 Win 2000.

Thanks,

Matt

--

-- 
    Matt Patterson | Typographer
    <maNGLEDtt <at> emdash.co.uk> | http://www.emdash.co.uk/
    <maNGLEDtt <at> reprocessed.org> | http://reprocessed.org/