diff options
| author | Stephan Bergmann <sbergman@redhat.com> | 2013-11-08 17:25:45 +0100 |
|---|---|---|
| committer | Stephan Bergmann <sbergman@redhat.com> | 2013-11-08 17:34:44 +0100 |
| commit | ea1a7ba72e1bd50a12faff1f8180a5a44745715d (patch) | |
| tree | 2c59c7de5cce89a42338836d718581da0bd846a0 /include/sfx2 | |
| parent | 81eba5c49dae5ba9efcdc8632044dc853afbf7b6 (diff) | |
Clean up IsSecureURL
...to not use WildCard (in case a trusted location URI already contains an
unescaped "*"), be specific about matching only past a final "/", and rename to
isSecureMacroUri for clarification.
The check with an INET_PROT_NOT_VALID default INetURLObject in
SfxApplication::OpenDocExec_Impl ("we have to check the referer before
executing") had efficiently been dead since its inception in
14237ac4bf497decdde8b742acea23780833ba12 "#90880#: security checks corrected,"
as INET_PROT_NOT_VALID is considered secure regardless of referer anyway.
Change-Id: I03bca5e6dac89bb2aac52909aff273ea640228d8
Diffstat (limited to 'include/sfx2')
| -rw-r--r-- | include/sfx2/app.hxx | 2 |
1 files changed, 0 insertions, 2 deletions
diff --git a/include/sfx2/app.hxx b/include/sfx2/app.hxx index d28a373bc5bf..ebb280a25ad6 100644 --- a/include/sfx2/app.hxx +++ b/include/sfx2/app.hxx @@ -79,7 +79,6 @@ class SfxModule; class SfxModule; typedef ::std::vector<SfxModule*> SfxModuleArr_Impl; class Window; -class INetURLObject; struct SfxChildWinFactory; struct SfxMenuCtrlFactory; struct SfxStbCtrlFactory; @@ -203,7 +202,6 @@ public: virtual void Invalidate(sal_uInt16 nId = 0); void NotifyEvent(const SfxEventHint& rEvent, bool bSynchron = true ); sal_Bool IsDowning() const; - sal_Bool IsSecureURL( const INetURLObject &rURL, const OUString *pReferer ) const; void ResetLastDir(); SAL_DLLPRIVATE static SfxApplication* Get() { return pApp;} |