W3C home > Mailing lists > Public > whatwg@whatwg.org > August 2013

Re: [whatwg] Disabling document.domain setting on iframe@sandbox (especially with allow-same-origin)

From: David Bruant <bruant.d@gmail.com>
Date: Wed, 21 Aug 2013 22:41:40 +0200
Message-ID: <52152604.901@gmail.com>
To: Boris Zbarsky <bzbarsky@MIT.EDU>
Cc: whatwg@lists.whatwg.org, Ian Hickson <ian@hixie.ch>
Le 21/08/2013 22:20, Boris Zbarsky a écrit :
> On 8/8/13 5:35 PM, Ian Hickson wrote:
>> I'm certainly open to the idea of making document.domain not work in
>> sandboxed <iframe>s. Any objections? Who is ready to implement this?
>
> There seems to be general support for this amongst the Mozilla DOM 
> peers, so I filed https://bugzilla.mozilla.org/show_bug.cgi?id=907892 
> with patch.
Thanks <3

Filed http://code.google.com/p/chromium/issues/detail?id=277084 on the 
Blink side. Let's see what happens.

David
Received on Wednesday, 21 August 2013 20:42:19 UTC

This archive was generated by hypermail 2.3.1 : Monday, 13 April 2015 23:09:23 UTC