CSP HTTP header description from Thomas Roessler on 2012-03-27 (public-webappsec@w3.org from March 2012)

From: Thomas Roessler <tlr@w3.org>
Date: Tue, 27 Mar 2012 09:59:39 +0200
To: public-webappsec@w3.org
Cc: Thomas Roessler <tlr@w3.org>
Message-Id: <A37E6E27-1EE3-4470-A452-F93129612F07@w3.org>

folks,

based on discussion at the IETF meeting, there won't be a separate IETF document to specify the CSP HTTP header.

It would be great if we could extend the header description in CSP to have the information suggested here:
	http://tools.ietf.org/html/draft-ietf-httpbis-p2-semantics-19#section-3.1

Reviewing this shouldn't be too much effort.

We can then ask for review from the IETF websec and http WGs, both of whom will be happy to provide that review.

Thanks,
--
Thomas Roessler, W3C  <tlr@w3.org>  (@roessler)

Received on Tuesday, 27 March 2012 07:59:53 UTC