- From: Dominique Hazael-Massieux <dom@w3.org>
- Date: Mon, 17 Aug 2015 15:17:43 +0200
- To: Eric Rescorla <ekr@rtfm.com>
- CC: "public-webrtc@w3.org" <public-webrtc@w3.org>
On 17/08/2015 15:15, Eric Rescorla wrote: > How about a CSP directive that enables RTCPeerConnection for > embedded contexts from specific origins and defaults to false for > other than self? > > > Seems like a question for WebAppSec. It's not like this is the only > thing that's > problematic in IFRAMEs I'm happy to take the question to WebAppSec, but it would probably be useful to understand first if the group who owns WebRTC would be comfortable with such a policy change :) Dom
Received on Monday, 17 August 2015 13:17:48 UTC