[w3c/payment-handler] Cross-origin iframes and feature policy. (#282) from Rouslan Solomakhin on 2018-04-09 (public-webpayments-specs@w3.org from April 2018)

From: Rouslan Solomakhin <notifications@github.com>
Date: Mon, 09 Apr 2018 14:23:01 +0000 (UTC)
To: w3c/payment-handler <payment-handler@noreply.github.com>
Cc: Subscribed <subscribed@noreply.github.com>
Message-ID: <w3c/payment-handler/pull/282@github.com>

Prohibit cross-origin iframes from installing payment handlers, unless
allowed by the feature policy.

closes #281

The following tasks have been completed:

 * [ ] web platform tests
 * [ ] MDN Docs added

Implementation commitment:

 * [ ] Safari
 * [x] [Chrome](https://crbug.com/828948)
 * [ ] Firefox
 * [ ] Edge
You can view, comment on, or merge this pull request online at:

  https://github.com/w3c/payment-handler/pull/282

-- Commit Summary --

  * Cross-origin iframes and feature policy.

-- File Changes --

    M index.html (42)

-- Patch Links --

https://github.com/w3c/payment-handler/pull/282.patch
https://github.com/w3c/payment-handler/pull/282.diff

-- 
You are receiving this because you are subscribed to this thread.
Reply to this email directly or view it on GitHub:
https://github.com/w3c/payment-handler/pull/282

Received on Monday, 9 April 2018 14:25:14 UTC