Re: [w3c/payment-request] Disable Payment Request API in CSP/iframe sandbox (#698)

Example of a CSP HTML header that @shhnjk proposes should prevent web payments:

`Content-Security-Policy: sandbox allow-scripts`

-- 
You are receiving this because you are subscribed to this thread.
Reply to this email directly or view it on GitHub:
https://github.com/w3c/payment-request/issues/698#issuecomment-376894675

Received on Wednesday, 28 March 2018 13:53:39 UTC