Security.fileuri.strict origin policy

From MozillaZine Knowledge Base
Revision as of 03:31, 28 March 2008 by Unarmed (talk | contribs)
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
Jump to navigationJump to search


When local HTML files (e.g., those located on your hard drive) are loaded into the browser, the scripts and links within have restrictions on what they can see and do. Those restrictions are determined by the same-origin policy for local files, which this preference controls.

This preference obsoletes security.fileuri.origin_policy.

Possible values and their effects


Local documents have access to other local documents in the same directory and in subdirectories, but not directory listings. (Default)


Local documents have access to all other local documents, including directory listings.

Recommended settings

If you do development with local files and need to be able to retrieve other local files, you may need to set this preference to false. Otherwise, leaving it set to true offers the most security.

First checked in

2008-03-20 by Johnny Stenback

Has an effect in

  • Firefox (nightly builds since 2008-03-20)

Related bugs

Related preferences

See also