[Webkit-unassigned] [Bug 89440] Blocking a resource via Content Security Policy should trigger an Error event.
bugzilla-daemon at webkit.org
bugzilla-daemon at webkit.org
Tue Jun 19 00:42:48 PDT 2012
https://bugs.webkit.org/show_bug.cgi?id=89440
--- Comment #2 from Mike West <mkwst at chromium.org> 2012-06-19 00:42:48 PST ---
(In reply to comment #1)
> In theory, we should treat CSP blocks just like empty 400 responses. When we block things for CORS, I think we correctly generate error events nowadays, so we might want to model what we do for CSP off of that.
Thanks for tracking down the CORS patch (https://bugs.webkit.org/show_bug.cgi?id=81998). Looks like it should be fairly straightforward to hook into the same sort of logic for CSP violations.
If no one else picks this up, I'll take a look at it sometime after I/O. :)
--
Configure bugmail: https://bugs.webkit.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.
More information about the webkit-unassigned
mailing list