W3C home > Mailing lists > Public > public-webappsec@w3.org > April 2013

Trimming the SecurityPolicy DOM interface

From: Adam Barth <w3c@adambarth.com>
Date: Sat, 27 Apr 2013 08:45:43 -0700
Message-ID: <CAJE5ia-YPiQ7e+xJgypWAKYc1Qsv=XnQaSFtM1ZFA9asN-UGKw@mail.gmail.com>
To: "public-webappsec@w3.org" <public-webappsec@w3.org>
Cc: Mike West <mkwst@google.com>
As discussed at the face-to-face meeting, I've trimmed the
SecurityPolicy DOM interface to just the first four attributes:

https://dvcs.w3.org/hg/content-security-policy/rev/f338192860c5

At the meeting, we discussed that these attribute have strong use
cases, but we couldn't think of any strong use cases for the remaining
DOM interfaces.

If folks come up with strong use cases, we should consider adding back
the removed interfaces (or adding new interfaces that better address
those use cases).

Note: At the face-to-face, we discussed making some of these attribute
writable in some circumstances, but I haven't made that change yet
because it probably deserves more discussion.

Adam
Received on Saturday, 27 April 2013 15:46:49 UTC

This archive was generated by hypermail 2.3.1 : Monday, 23 October 2017 14:54:01 UTC