- From: Stefan Ossendorf <stefan.ossendorf@outlook.de>
- Date: Thu, 21 Aug 2014 18:36:20 +0200
- To: <public-webappsec@w3.org>
Received on Thursday, 21 August 2014 16:36:47 UTC
Hello, I have two questions: 1. report-uri directive According to https://w3c.github.io/webappsec/specs/content-security-policy/#set-of-report -uris Quote: "The set of report URIs is the value of the report-uri directive, each resolved relative to the protected resource's URI." Does relative means really relative or just "resolve the uri"? 2. report-only-header Why is no report-uri directive enforced within a report-only-header? Thanks -Stefan
Received on Thursday, 21 August 2014 16:36:47 UTC