W3C home > Mailing lists > Public > public-webappsec@w3.org > April 2013

Re: CSP 1.0 copy&paste error

From: Adam Barth <w3c@adambarth.com>
Date: Sat, 20 Apr 2013 16:26:58 -0700
Message-ID: <CAJE5ia-8Wz3NK=Lg8KCMJseUrttpOco4hK61GJFSedq=03dkkg@mail.gmail.com>
To: Janusz Majnert <jmajnert@gmail.com>
Cc: "public-webappsec@w3.org" <public-webappsec@w3.org>
Thanks!  I've fixed this typo in the CSP 1.0 draft.  It looks like this is
fixed in the CSP 1.1 draft.

Adam



On Thu, Mar 14, 2013 at 1:51 AM, Janusz Majnert <jmajnert@gmail.com> wrote:

> Hi,
> I think there's a copy&paste error in this section of the CSP 1.0
> working draft:
> https://dvcs.w3.org/hg/content-security-policy/raw-file/tip/csp-1.0-specification.html#connect-src
> The section covers "connect-src" directives, so the sentence "Whenever
> [...], if the URI does not match the allowed font sources, [...]"
> should read "allowed connection targets" in place of "allowed font
> sources".
>
> Regards,
> Janusz Majnert
>
>
Received on Saturday, 20 April 2013 23:27:57 UTC

This archive was generated by hypermail 2.3.1 : Monday, 23 October 2017 14:54:01 UTC