W3C home > Mailing lists > Public > public-webappsec@w3.org > May 2014

Re: CSP and mixed content

From: Anne van Kesteren <annevk@annevk.nl>
Date: Wed, 7 May 2014 14:48:02 +0100
Message-ID: <CADnb78hpkceoRf8TvdN4s_HVAGr_hAVEnLO3-=19uHg4FSohnQ@mail.gmail.com>
To: Mike West <mkwst@google.com>
Cc: WebAppSec WG <public-webappsec@w3.org>
On Wed, May 7, 2014 at 2:21 PM, Mike West <mkwst@google.com> wrote:
> Do you think a 'secure-stuff' primitive would be useful, or would you like
> Fetch to define what "secure" means?

I'd be fine with CSP defining it. I haven't really followed "mixed
content" closely enough to know what qualifies as secure and what
doesn't (apart from the obvious).

Received on Wednesday, 7 May 2014 13:48:32 UTC

This archive was generated by hypermail 2.4.0 : Friday, 17 January 2020 18:54:38 UTC