W3C home > Mailing lists > Public > public-webrtc@w3.org > January 2018

Re: webRTC and Content Security Policy connect-src

From: Sergio Garcia Murillo <sergio.garcia.murillo@gmail.com>
Date: Wed, 17 Jan 2018 09:57:41 +0100
To: public-webrtc@w3.org
Message-ID: <7671f9a3-3ee5-b401-4d88-210b74185f2d@gmail.com>
On 17/01/2018 1:14, Stephen Farrell wrote:
> Maybe I'm overly concerned, but there could be significant
> problems with whitelists in this space acting to further
> entrench the biggest players generally getting to see or
> control JS or traffic, even if the web sites didn't really
> want to have that happen.

While I could agree with this concern, that is a concern for CSP in 
general, not for our switch. I would be more worried if a hosting 
service doesn't allow xmlhttprequest outside their service to enforce 
vendor lock in, but this would be an issue to discuss in CSP list, not here.

Best regards

Received on Wednesday, 17 January 2018 08:58:37 UTC

This archive was generated by hypermail 2.3.1 : Wednesday, 17 January 2018 08:58:38 UTC