I’m struggling to get a remote XUL app working that uses a dont-build-content tree XUL template with a remote RDF datasource. The problem is that Mozilla’s security model is just too restrictive in terms of what remote XUL and JavaScript can do. An extension could do this no problem, but I can only get the remote XUL to do what I want if I change the browser’s security settings (which I can’t ask users to do) or use signed JavaScript (which sounds like a royal pain in the butt). More info at these forum threads:
Marc Abramowitz
