1 2010-07-20 Sebastien Pouliot <sebastien@ximian.com>
3 * NoAccessPolicy.cs: Set default to SecurityException each time
4 IsAllowed is called since we share a single instance of this type
6 2010-07-19 Sebastien Pouliot <sebastien@ximian.com>
9 * ICrossDomainPolicy.cs:
11 * PolicyDownloadPolicy.cs:
12 * SiteOfOriginPolicy.cs:
13 Allow throwing something else than a SecurityException
14 which is pretty rare but we got a DRT for it
16 2010-05-14 Sebastien Pouliot <sebastien@ximian.com>
18 * FlashCrossDomainPolicy.cs: Reverse conditions order on secure=true
19 since we're currently too severe. Fix DRT668
21 2010-04-13 Sebastien Pouliot <sebastien@ximian.com>
23 * CrossDomainPolicyManager.cs: Fix previous change since it
24 breaks several valid cases (e.g. text/*, text/xml; charset=utf-8)
25 and does not completely covers the application/xml case.
26 Avoid possible ArgumentException while adding policies since it
29 2010-04-13 Andreia Gaita <avidigal@novell.com>
31 * CrossDomainPolicyManager.cs: make the contentType detection
32 look for /xml at the end, it's more reliable
33 (fixes olympics for moonlight)
35 2010-04-07 Sebastien Pouliot <sebastien@ximian.com>
37 * ClientAccessPolicy.cs: Fake a "GET" method when applying a
40 2010-04-07 Sebastien Pouliot <sebastien@ximian.com>
42 * BaseDomainPolicy.cs: Abstract-fy IsAllowed(WebRequest) and
43 remove abstract IsAllowed(Uri,string[]) since it cannot provide
44 enough information for the client access policy.
45 * ClientAccessPolicy.cs: Replace IsAllowed(Uri,string[]) with
46 IsAllowed(WebRequest) and add logic for AllowAnyMethod
47 * ClientAccessPolicyParser.cs: Read "http-methods" attribute (new
48 in SL3) and set the new AllowAnyMethod property if the value is
49 "*" (the only legal value if the attribute is present).
50 * FlashCrossDomainPolicy.cs: Add IsAllowed(WebRequest) since it's
51 not part of BaseDomainPolicy anymore.
53 2010-04-06 Sebastien Pouliot <sebastien@ximian.com>
55 * ClientAccessPolicyParser.cs: Don't forget "http-request-headers"
58 2010-04-06 Sebastien Pouliot <sebastien@ximian.com>
60 * ClientAccessPolicyParser.cs: Catch extra attributes that
61 leads to an invalid (no-access) policy. Fix parts of DRT#666
62 * CrossDomainPolicyManager.cs: Ignore policies sent with a
63 Content-Type different than "text/*". Fix DRT#667
64 * FlashCrossDomainPolicyParser.cs: Catch extra attributes and
65 the case where a second policy is present (invalid xml). Fix
68 2010-03-10 Sebastien Pouliot <sebastien@ximian.com>
70 * BaseDomainPolicy.cs, ClientAccessPolicy[Parser].cs,
71 CrossDomainPolicyManager.cs, FlashCrossDomainPolicy[Parser].cs,
72 ICrossDomainPolicy.cs, NoAccessPolicy.cs, PolicyDownloadPolicy.cs,
73 SiteOfOriginPolicy.cs: Moved from System.Net.dll with namespace
74 and minor build adjustments.