CSP 1.0 copy&paste error from Janusz Majnert on 2013-03-14 (public-webappsec@w3.org from March 2013)

From: Janusz Majnert <jmajnert@gmail.com>
Date: Thu, 14 Mar 2013 09:51:23 +0100
To: public-webappsec@w3.org
Message-ID: <CAOeF0exvdXEFGQE7-yaK=nqsPTuyUHUUiMU_uWTLyt+_1ff8kg@mail.gmail.com>

Hi,
I think there's a copy&paste error in this section of the CSP 1.0
working draft: https://dvcs.w3.org/hg/content-security-policy/raw-file/tip/csp-1.0-specification.html#connect-src
The section covers "connect-src" directives, so the sentence "Whenever
[...], if the URI does not match the allowed font sources, [...]"
should read "allowed connection targets" in place of "allowed font
sources".

Regards,
Janusz Majnert

Received on Thursday, 14 March 2013 08:51:51 UTC