W3C home > Mailing lists > Public > public-webappsec@w3.org > June 2012

Proposed resolution of sandbox question

From: Eric Rescorla <ekr@rtfm.com>
Date: Thu, 31 May 2012 21:29:49 -0700
Message-ID: <CABcZeBPnWRZM2cQ7wkWYMcbkvsbOSzj3b7YxXj8wzTS8UZ1BMw@mail.gmail.com>
To: public-webappsec <public-webappsec@w3.org>
The chairs would like to propose the following resolution of the sandbox

- CSP 1.0 will include the sandbox directive.
- The sandbox directive will be marked as an "optional" feature in CSP 1.0
  so that an implementation can conform without implementing it
  (i.e., it will be exempt from the requirements of S 2.)

Is this something people can live with?


[for the chairs]
Received on Friday, 1 June 2012 04:30:58 UTC

This archive was generated by hypermail 2.3.1 : Monday, 23 October 2017 14:53:58 UTC