30081 – Support Mozilla's CSP proposal

RESOLVED DUPLICATE of bug 53572 30081

Support Mozilla's CSP proposal

https://bugs.webkit.org/show_bug.cgi?id=30081

Summary Support Mozilla's CSP proposal

Peter Kasting

Reported 2009-10-05 10:13:34 PDT

CSP, as described in the above URL, is a proposal to enhance site security by allowing web authors to restrict what sorts of capabilities a page has. Implementing this would be a boon for web authors trying to reduce XSS and similar attacks.

Attachments
Add attachment proposed patch, testcase, etc.

Adam Barth

Comment 1 2009-10-05 10:20:49 PDT

I talked to Sid via chat. He said he'd thrilled if we implemented CSP. It might be the right time to review the spec in detail and start a prototype implementation.

Alexey Proskuryakov

Comment 2 2010-03-31 16:33:54 PDT

<rdar://problem/5992706>

Sam Weinig

Comment 3 2011-10-04 17:50:46 PDT

*** This bug has been marked as a duplicate of bug 53572 ***

Note You need to log in before you can comment on or make changes to this bug.

Status RESOLVED

Resolution DUPLICATE

of bug 53572

Priority P2

Severity Enhancement

Classification Unclassified

Version 528+ (Nightly build)

Hardware PC

OS All

Product WebKit

Component Platform

Assignee

Nobody

Reported

2009-10-05 10:13 PDT

Modified

2011-10-04 17:50 PDT History

CC List

10 users Show

URL

http://people.mozilla.org/~bsterne/content-security-policy/index.html

Keywords InRadar

Depends on

Blocks