Re: [w3c/payment-request] Disable Payment Request API in CSP/iframe sandbox (#698) from Rouslan Solomakhin on 2018-03-28 (public-webpayments-specs@w3.org from March 2018)

From: Rouslan Solomakhin <notifications@github.com>
Date: Wed, 28 Mar 2018 13:53:12 +0000 (UTC)
To: w3c/payment-request <payment-request@noreply.github.com>
Cc: Subscribed <subscribed@noreply.github.com>
Message-ID: <w3c/payment-request/issues/698/376894675@github.com>

Example of a CSP HTML header that @shhnjk proposes should prevent web payments:

`Content-Security-Policy: sandbox allow-scripts`

-- 
You are receiving this because you are subscribed to this thread.
Reply to this email directly or view it on GitHub:
https://github.com/w3c/payment-request/issues/698#issuecomment-376894675

Received on Wednesday, 28 March 2018 13:53:39 UTC