W3C home > Mailing lists > Public > public-webappsec@w3.org > April 2014

CSP and mixed content

From: Anne van Kesteren <annevk@annevk.nl>
Date: Wed, 30 Apr 2014 14:29:58 +0100
Message-ID: <CADnb78htXrf1kLNOTKYw5dg112kO6k=nmW=9PpUQnnSb2ebRTg@mail.gmail.com>
To: WebAppSec WG <public-webappsec@w3.org>
I have this open issue on Fetch:
https://www.w3.org/Bugs/Public/show_bug.cgi?id=22262

I was wondering, once we have integration between Fetch and CSP, would
it make sense for CSP to define the mixed content blocking rules?
Fetch should give sufficient context to execute those rules, no? Would
be great to have it defined.


-- 
http://annevankesteren.nl/
Received on Wednesday, 30 April 2014 13:30:29 UTC

This archive was generated by hypermail 2.3.1 : Wednesday, 30 April 2014 13:30:29 UTC