W3C home > Mailing lists > Public > public-webappsec@w3.org > April 2013

Re: Trimming the SecurityPolicy DOM interface

From: Eduardo' Vela <evn@google.com>
Date: Sun, 28 Apr 2013 06:25:48 +0800
Message-ID: <CAFswPa8boCmNw9nyReSQbSmOfJocCJbQ9m9gjC6tBjm7HpGR8Q@mail.gmail.com>
To: Adam Barth <w3c@adambarth.com>
Cc: Alex Russell <slightlyoff@google.com>, "public-webappsec@w3.org" <public-webappsec@w3.org>, Mike West <mkwst@google.com>, "www-tag@w3.org List" <www-tag@w3.org>

And script-subset could allow the policy be subset.. May be useful if you
want say, load inline scripts at load time, and then lock it down to no
inline scripts.

Received on Saturday, 27 April 2013 22:26:35 UTC

This message: [ Message body ]
Next message: Hill, Brad: "RE: webappsec-ISSUE-51: How to handle externally defined <element> with <link rel=import>"
Previous message: Eduardo' Vela: "Re: Trimming the SecurityPolicy DOM interface"
In reply to: Eduardo' Vela: "Re: Trimming the SecurityPolicy DOM interface"
Next in thread: Ian Melven: "Re: Trimming the SecurityPolicy DOM interface"
Reply: Ian Melven: "Re: Trimming the SecurityPolicy DOM interface"

Mail actions: [ respond to this message ] [ mail a new topic ]
Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ]
Help: [ How to use the archives ] [ Search in the archives ]

This archive was generated by hypermail 2.4.0 : Friday, 17 January 2020 18:54:32 UTC