W3C home > Mailing lists > Public > public-webappsec@w3.org > April 2015

AW: [CSP2] Number of CSP Header Fields

From: Stefan Ossendorf <stefan.ossendorf@outlook.de>
Date: Fri, 3 Apr 2015 19:25:52 +0200
Message-ID: <DUB113-DS417F68B050F653E5E72ECE2F10@phx.gbl>
To: "'Martin Thomson'" <martin.thomson@gmail.com>, "'Mike West'" <mkwst@google.com>
CC: "'Anne van Kesteren'" <annevk@annevk.nl>, <public-webappsec@w3.org>
I think he mean "multiple policy header" are only one policy.

My question is: Why is it prohibited with the first statement when it's irrelevant?

-----Urspr√ľngliche Nachricht-----
Von: Martin Thomson [mailto:martin.thomson@gmail.com] 
Gesendet: Freitag, 3. April 2015 19:02
An: Mike West
Cc: Anne van Kesteren; Stefan Ossendorf; public-webappsec@w3.org
Betreff: Re: [CSP2] Number of CSP Header Fields

On 3 April 2015 at 06:47, Mike West <mkwst@google.com> wrote:
> Right. This is what I meant. Multiple policies can be concatenated 
> into a single, comma-separated header.

Well, isn't that just a single policy then?
Received on Friday, 3 April 2015 17:26:20 UTC

This archive was generated by hypermail 2.3.1 : Monday, 23 October 2017 14:54:11 UTC