[Webkit-unassigned] [Bug 154345] New: CSP: Implement frame-ancestors directive
bugzilla-daemon at webkit.org
bugzilla-daemon at webkit.org
Wed Feb 17 11:12:27 PST 2016
https://bugs.webkit.org/show_bug.cgi?id=154345
Bug ID: 154345
Summary: CSP: Implement frame-ancestors directive
Classification: Unclassified
Product: WebKit
Version: WebKit Local Build
Hardware: All
OS: All
Status: NEW
Keywords: WebExposed
Severity: Normal
Priority: P2
Component: WebCore Misc.
Assignee: webkit-unassigned at lists.webkit.org
Reporter: dbates at webkit.org
CC: webkit-bug-importer at group.apple.com
We should implement the Content Security Policy frame-ancestors directive to allow a web developer to whitelist the resources that are allowed to be embedded in a web page. In an HTML document such embedding may be via the use of a frame, iframe, object, embed, or applet element. See <https://w3c.github.io/webappsec-csp/2/#directive-frame-ancestors> for more details.
--
You are receiving this mail because:
You are the assignee for the bug.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.webkit.org/pipermail/webkit-unassigned/attachments/20160217/32e3aac3/attachment-0001.html>
More information about the webkit-unassigned
mailing list