W3C home > Mailing lists > Public > public-web-security@w3.org > February 2011

Re: CSP Directive Proposal: Sandbox

From: gaz Heyes <gazheyes@gmail.com>
Date: Wed, 23 Feb 2011 09:43:12 +0000
Message-ID: <AANLkTingngKkd6-o36gAtBtJSfkwpCexhzgVm9-3Bo3F@mail.gmail.com>
To: Adam Barth <w3c@adambarth.com>
Cc: "sird@rckc.at" <sird@rckc.at>, public-web-security@w3.org
On 22 February 2011 09:57, Adam Barth <w3c@adambarth.com> wrote:

> >> The unique origin does not use the about scheme.
> >
> > What does it use?
>
> There's no way to tell.  In WebKit, it's just a Boolean flag that says
> "this origin is unique."
>

Ok if the origin is unique and doesn't use modify the url. How would iframe
sandboxes communicate with the parent or each other? Since potentially they
could all be part of the same location and since all messages would return
the same origin.
Received on Wednesday, 23 February 2011 09:43:45 GMT

This archive was generated by hypermail 2.2.0+W3C-0.50 : Wednesday, 23 February 2011 09:43:46 GMT