W3C home > Mailing lists > Public > public-webappsec@w3.org > March 2012

CSP HTTP header description

From: Thomas Roessler <tlr@w3.org>
Date: Tue, 27 Mar 2012 09:59:39 +0200
Message-Id: <A37E6E27-1EE3-4470-A452-F93129612F07@w3.org>
Cc: Thomas Roessler <tlr@w3.org>
To: public-webappsec@w3.org

based on discussion at the IETF meeting, there won't be a separate IETF document to specify the CSP HTTP header.

It would be great if we could extend the header description in CSP to have the information suggested here:

Reviewing this shouldn't be too much effort.

We can then ask for review from the IETF websec and http WGs, both of whom will be happy to provide that review.

Thomas Roessler, W3C  <tlr@w3.org>  (@roessler)
Received on Tuesday, 27 March 2012 07:59:53 UTC

This archive was generated by hypermail 2.4.0 : Friday, 17 January 2020 18:54:27 UTC