You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@shindig.apache.org by "John Hjelmstad (JIRA)" <ji...@apache.org> on 2008/06/28 02:13:45 UTC

[jira] Created: (SHINDIG-410) Consider refactoring + NIX (Native IE XDC) enhancement

Consider refactoring + NIX (Native IE XDC) enhancement
------------------------------------------------------

                 Key: SHINDIG-410
                 URL: https://issues.apache.org/jira/browse/SHINDIG-410
             Project: Shindig
          Issue Type: Improvement
          Components: Features (Javascript)
         Environment: All
            Reporter: John Hjelmstad
            Assignee: John Hjelmstad


Take 2 :)

I've been working on a new technique for cross-domain communication in IE that exploits the fact that window.opener can be set and read across domains. To secure this, VBScript object wrappers are used. The technique is a little crazy, but maintains object isolation while utilizing the existing authToken-based security mechanism for establishing a communication channel and authenticating messages sent from gadget to container and back.

See attached patch for details.

-- 
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.

[jira] Commented: (SHINDIG-410) Consider refactoring + NIX (Native IE XDC) enhancement

Posted by "Kevin Brown (JIRA)" <ji...@apache.org>.

    [ https://issues.apache.org/jira/browse/SHINDIG-410?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=12608959#action_12608959 ] 

Kevin Brown commented on SHINDIG-410:
-------------------------------------

Once Brian oks it I'm ok with it, but there are several issues still -- mostly matters of consistency.

* There definitely shouldn't be any underscores in the variable names,
* File overview Comments need to be JsDoc compatible, not C++ style.
* Functions shouldn't be called before they're declared
* Functions should *NOT* execute before gadgets.config.init is invoked.
* Acronyms are words (Nix, not NIX, Html, not HTML)



> Consider refactoring + NIX (Native IE XDC) enhancement
> ------------------------------------------------------
>
>                 Key: SHINDIG-410
>                 URL: https://issues.apache.org/jira/browse/SHINDIG-410
>             Project: Shindig
>          Issue Type: Improvement
>          Components: Features (Javascript)
>         Environment: All
>            Reporter: John Hjelmstad
>            Assignee: John Hjelmstad
>         Attachments: rpc.patch
>
>
> Take 2 :)
> I've been working on a new technique for cross-domain communication in IE that exploits the fact that window.opener can be set and read across domains. To secure this, VBScript object wrappers are used. The technique is a little crazy, but maintains object isolation while utilizing the existing authToken-based security mechanism for establishing a communication channel and authenticating messages sent from gadget to container and back.
> See attached patch for details.

-- 
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.

[jira] Updated: (SHINDIG-410) Consider refactoring + NIX (Native IE XDC) enhancement

Posted by "John Hjelmstad (JIRA)" <ji...@apache.org>.

     [ https://issues.apache.org/jira/browse/SHINDIG-410?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

John Hjelmstad updated SHINDIG-410:
-----------------------------------

    Attachment: rpc.patch

The attached patch cleans up the rpc library as well as implements NIX. Performance improvement is dramatic, going from flaky repeated-message passing of low bandwidth and high latency to synchronous, fast, in-memory cross-domain message passing.

> Consider refactoring + NIX (Native IE XDC) enhancement
> ------------------------------------------------------
>
>                 Key: SHINDIG-410
>                 URL: https://issues.apache.org/jira/browse/SHINDIG-410
>             Project: Shindig
>          Issue Type: Improvement
>          Components: Features (Javascript)
>         Environment: All
>            Reporter: John Hjelmstad
>            Assignee: John Hjelmstad
>         Attachments: rpc.patch
>
>
> Take 2 :)
> I've been working on a new technique for cross-domain communication in IE that exploits the fact that window.opener can be set and read across domains. To secure this, VBScript object wrappers are used. The technique is a little crazy, but maintains object isolation while utilizing the existing authToken-based security mechanism for establishing a communication channel and authenticating messages sent from gadget to container and back.
> See attached patch for details.

-- 
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.