W3C home > Mailing lists > Public > public-webappsec@w3.org > June 2013

Re: meta restrictions (ACTION 109)

From: Adam Barth <w3c@adambarth.com>
Date: Sat, 22 Jun 2013 21:43:42 -0700
Message-ID: <CAJE5ia-AqYOZL3OwJWPXUP=AqDWk9RNjNfJo=CrG9yz9e1Kc5A@mail.gmail.com>
To: Daniel Veditz <dveditz@mozilla.com>
Cc: "public-webappsec@w3.org" <public-webappsec@w3.org>
This looks good.  Let's add it to the draft.

One note, you've added the first block of text to a TODO list in the
spec.  We'll still need to write some real spec text for it at some


On Tue, Jun 18, 2013 at 9:06 AM, Daniel Veditz <dveditz@mozilla.com> wrote:
> Here are some proposed restrictions on directives in a policy specified
> in a <meta> tag.  The spec already restricts the report-uri directive.
> Although it would be foolish to use policy-uri in a meta header I don't
> think we need to explicitly restrict it.
> -Dan Veditz
Received on Sunday, 23 June 2013 04:44:40 UTC

This archive was generated by hypermail 2.4.0 : Friday, 17 January 2020 18:54:33 UTC