1 2010-07-23 Sebastien Pouliot <sebastien@ximian.com>
3 * BaseDomainPolicy.cs: Add internal setter for Exception property
4 * ClientAccessPolicy.cs: Re-order checks (to match SL) and throw
5 NotSupportedException for invalid headers
7 2010-07-20 Sebastien Pouliot <sebastien@ximian.com>
9 * NoAccessPolicy.cs: Set default to SecurityException each time
10 IsAllowed is called since we share a single instance of this type
12 2010-07-19 Sebastien Pouliot <sebastien@ximian.com>
14 * BaseDomainPolicy.cs:
15 * ICrossDomainPolicy.cs:
17 * PolicyDownloadPolicy.cs:
18 * SiteOfOriginPolicy.cs:
19 Allow throwing something else than a SecurityException
20 which is pretty rare but we got a DRT for it
22 2010-05-14 Sebastien Pouliot <sebastien@ximian.com>
24 * FlashCrossDomainPolicy.cs: Reverse conditions order on secure=true
25 since we're currently too severe. Fix DRT668
27 2010-04-13 Sebastien Pouliot <sebastien@ximian.com>
29 * CrossDomainPolicyManager.cs: Fix previous change since it
30 breaks several valid cases (e.g. text/*, text/xml; charset=utf-8)
31 and does not completely covers the application/xml case.
32 Avoid possible ArgumentException while adding policies since it
35 2010-04-13 Andreia Gaita <avidigal@novell.com>
37 * CrossDomainPolicyManager.cs: make the contentType detection
38 look for /xml at the end, it's more reliable
39 (fixes olympics for moonlight)
41 2010-04-07 Sebastien Pouliot <sebastien@ximian.com>
43 * ClientAccessPolicy.cs: Fake a "GET" method when applying a
46 2010-04-07 Sebastien Pouliot <sebastien@ximian.com>
48 * BaseDomainPolicy.cs: Abstract-fy IsAllowed(WebRequest) and
49 remove abstract IsAllowed(Uri,string[]) since it cannot provide
50 enough information for the client access policy.
51 * ClientAccessPolicy.cs: Replace IsAllowed(Uri,string[]) with
52 IsAllowed(WebRequest) and add logic for AllowAnyMethod
53 * ClientAccessPolicyParser.cs: Read "http-methods" attribute (new
54 in SL3) and set the new AllowAnyMethod property if the value is
55 "*" (the only legal value if the attribute is present).
56 * FlashCrossDomainPolicy.cs: Add IsAllowed(WebRequest) since it's
57 not part of BaseDomainPolicy anymore.
59 2010-04-06 Sebastien Pouliot <sebastien@ximian.com>
61 * ClientAccessPolicyParser.cs: Don't forget "http-request-headers"
64 2010-04-06 Sebastien Pouliot <sebastien@ximian.com>
66 * ClientAccessPolicyParser.cs: Catch extra attributes that
67 leads to an invalid (no-access) policy. Fix parts of DRT#666
68 * CrossDomainPolicyManager.cs: Ignore policies sent with a
69 Content-Type different than "text/*". Fix DRT#667
70 * FlashCrossDomainPolicyParser.cs: Catch extra attributes and
71 the case where a second policy is present (invalid xml). Fix
74 2010-03-10 Sebastien Pouliot <sebastien@ximian.com>
76 * BaseDomainPolicy.cs, ClientAccessPolicy[Parser].cs,
77 CrossDomainPolicyManager.cs, FlashCrossDomainPolicy[Parser].cs,
78 ICrossDomainPolicy.cs, NoAccessPolicy.cs, PolicyDownloadPolicy.cs,
79 SiteOfOriginPolicy.cs: Moved from System.Net.dll with namespace
80 and minor build adjustments.