Re: webappsec-ISSUE-69 (Overt channel control in CSP): Consider directives to manage postMessage and external navigation of iframes [CSP Next]

Brad Hill <hillbrad@fb.com> writes:

> Deian, thank you and please do.  We always welcome proposed text (from
> group members).

I took a first stab at the normative text for message-src and
message-sink directives. I hope this is a reasonable starting point for
discussion:

https://github.com/w3c/webappsec/pull/101/files

Thanks,
Deian

Received on Monday, 1 December 2014 22:26:49 UTC