You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@shindig.apache.org by "John Hjelmstad (JIRA)" <ji...@apache.org> on 2008/06/28 02:13:45 UTC
[jira] Created: (SHINDIG-410) Consider refactoring + NIX (Native IE
XDC) enhancement
Consider refactoring + NIX (Native IE XDC) enhancement
------------------------------------------------------
Key: SHINDIG-410
URL: https://issues.apache.org/jira/browse/SHINDIG-410
Project: Shindig
Issue Type: Improvement
Components: Features (Javascript)
Environment: All
Reporter: John Hjelmstad
Assignee: John Hjelmstad
Take 2 :)
I've been working on a new technique for cross-domain communication in IE that exploits the fact that window.opener can be set and read across domains. To secure this, VBScript object wrappers are used. The technique is a little crazy, but maintains object isolation while utilizing the existing authToken-based security mechanism for establishing a communication channel and authenticating messages sent from gadget to container and back.
See attached patch for details.
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.
[jira] Commented: (SHINDIG-410) Consider refactoring + NIX (Native
IE XDC) enhancement
Posted by "Kevin Brown (JIRA)" <ji...@apache.org>.
[ https://issues.apache.org/jira/browse/SHINDIG-410?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=12608959#action_12608959 ]
Kevin Brown commented on SHINDIG-410:
-------------------------------------
Once Brian oks it I'm ok with it, but there are several issues still -- mostly matters of consistency.
* There definitely shouldn't be any underscores in the variable names,
* File overview Comments need to be JsDoc compatible, not C++ style.
* Functions shouldn't be called before they're declared
* Functions should *NOT* execute before gadgets.config.init is invoked.
* Acronyms are words (Nix, not NIX, Html, not HTML)
> Consider refactoring + NIX (Native IE XDC) enhancement
> ------------------------------------------------------
>
> Key: SHINDIG-410
> URL: https://issues.apache.org/jira/browse/SHINDIG-410
> Project: Shindig
> Issue Type: Improvement
> Components: Features (Javascript)
> Environment: All
> Reporter: John Hjelmstad
> Assignee: John Hjelmstad
> Attachments: rpc.patch
>
>
> Take 2 :)
> I've been working on a new technique for cross-domain communication in IE that exploits the fact that window.opener can be set and read across domains. To secure this, VBScript object wrappers are used. The technique is a little crazy, but maintains object isolation while utilizing the existing authToken-based security mechanism for establishing a communication channel and authenticating messages sent from gadget to container and back.
> See attached patch for details.
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.
[jira] Updated: (SHINDIG-410) Consider refactoring + NIX (Native IE
XDC) enhancement
Posted by "John Hjelmstad (JIRA)" <ji...@apache.org>.
[ https://issues.apache.org/jira/browse/SHINDIG-410?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
John Hjelmstad updated SHINDIG-410:
-----------------------------------
Attachment: rpc.patch
The attached patch cleans up the rpc library as well as implements NIX. Performance improvement is dramatic, going from flaky repeated-message passing of low bandwidth and high latency to synchronous, fast, in-memory cross-domain message passing.
> Consider refactoring + NIX (Native IE XDC) enhancement
> ------------------------------------------------------
>
> Key: SHINDIG-410
> URL: https://issues.apache.org/jira/browse/SHINDIG-410
> Project: Shindig
> Issue Type: Improvement
> Components: Features (Javascript)
> Environment: All
> Reporter: John Hjelmstad
> Assignee: John Hjelmstad
> Attachments: rpc.patch
>
>
> Take 2 :)
> I've been working on a new technique for cross-domain communication in IE that exploits the fact that window.opener can be set and read across domains. To secure this, VBScript object wrappers are used. The technique is a little crazy, but maintains object isolation while utilizing the existing authToken-based security mechanism for establishing a communication channel and authenticating messages sent from gadget to container and back.
> See attached patch for details.
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.