Re: Understanding the security model for the sandbox directive from dveditz on 2011-11-04 (public-web-security@w3.org from November 2011)

From: dveditz <dveditz@mozilla.com>
Date: Fri, 4 Nov 2011 08:26:26 -0700 (PDT)
To: w3c@adambarth.com, public-web-security@w3.org
Cc: jrossi@microsoft.com
Message-ID: <pg5o38t4g1gc6xou119g6kre.1320420360611@email.android.com>

What do you mean by "main frame"? The top document, or the document in a <frame> element in the top document?

A sandbox directive should apply to any document no matter where loaded, and should not pollute the container it is loaded in for future documents. If we start with those as consistency principles what works and what doesn't?

What model does IE 10 follow? What have they learned from their implementation?

Received on Friday, 4 November 2011 15:29:29 UTC