W3C home > Mailing lists > Public > public-webappsec@w3.org > January 2015

[CSP] CSP3: Request for comments on message-src and message-sink

From: Deian Stefan <deian@cs.stanford.edu>
Date: Thu, 29 Jan 2015 17:02:05 -0800
To: public-webappsec@w3.org
Message-ID: <87r3ud9j3m.fsf@cs.stanford.edu>

Hi all,

I started working on the CSP3 postMessage and navigation directives
previously brought up in [1]. The following pull request describes the
message-src and message-sink directives, the goals of which are to
restrict to whom and from whom one can receive messages:

https://github.com/w3c/webappsec/pull/161

I would appreciate any comments and thoughts on this.

Cheers,
Deian

https://lists.w3.org/Archives/Public/public-webappsec/2014Dec/0008.html

Received on Friday, 30 January 2015 01:02:37 UTC

This archive was generated by hypermail 2.3.1 : Monday, 23 October 2017 14:54:09 UTC