[Webkit-unassigned] [Bug 146279] New: CSP error message when frame load is blocked does not read well

bugzilla-daemon at webkit.org bugzilla-daemon at webkit.org
Wed Jun 24 08:25:22 PDT 2015


https://bugs.webkit.org/show_bug.cgi?id=146279

            Bug ID: 146279
           Summary: CSP error message when frame load is blocked does not
                    read well
    Classification: Unclassified
           Product: WebKit
           Version: 528+ (Nightly build)
          Hardware: All
                OS: All
            Status: NEW
          Severity: Normal
          Priority: P2
         Component: WebCore Misc.
          Assignee: webkit-unassigned at lists.webkit.org
          Reporter: dbates at webkit.org

When the Content Security Policy (CSP) blocks a frame load it emits an error message to the Web Inspector console that has the form:

Refused to frame 'http://127.0.0.1:8000/security/contentSecurityPolicy/resources/alert-fail.html' because it violates the following Content Security Policy directive: "frame-src 'none'"

This error message does not read well. In particular, the phrase "Refused to frame" does not read well. We should make this error message read well so that it is clear that the CSP policy of the page blocked a frame load.

-- 
You are receiving this mail because:
You are the assignee for the bug.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.webkit.org/pipermail/webkit-unassigned/attachments/20150624/9b4d9b84/attachment-0001.html>


More information about the webkit-unassigned mailing list