W3C home > Mailing lists > Public > public-webappsec@w3.org > January 2014

Re: CSP formal objection.

From: Anne van Kesteren <annevk@annevk.nl>
Date: Tue, 28 Jan 2014 12:57:28 -0800
Message-ID: <CADnb78h=5jepFrrToBw3GB+JOxa3jKdye9-MuiJ64CsHPBAJBw@mail.gmail.com>
To: Glenn Adams <glenn@skynav.com>
Cc: "public-webappsec@w3.org" <public-webappsec@w3.org>
> On Mon, Jan 27, 2014 at 10:19 AM, Glenn Adams <glenn@skynav.com> wrote:
>> Option #1
>>
>> Our preference would be to simply remove the following text from 3.2.3:
>>
>> "Enforcing a policy should not interfere with the operation of
>> user-supplied scripts such as third-party user-agent add-ons and JavaScript
>> bookmarklets."

This makes the most sense to me. Web standards have no business
talking about UI-level features.


-- 
http://annevankesteren.nl/
Received on Tuesday, 28 January 2014 20:57:57 UTC

This archive was generated by hypermail 2.3.1 : Monday, 23 October 2017 14:54:04 UTC