Re: [webappsec] CSP: are blob uri's really just origin='self'?

Blob URIs and Blobs are different things.  The idea is that you can
postMessage a Blob across boundaries but if you send over a URI string it
won't work.

- Kyle

On Fri, Aug 30, 2013 at 3:06 PM, Ian Melven <> wrote:

> also I just noticed the 'blob URIs must only be valid within this origin'
> part of what i pasted so i'm now confused about why cross-origin blobs
> exist at all :)
> ian

Received on Friday, 30 August 2013 22:09:09 UTC