[Webkit-unassigned] [Bug 244143] New: [Reporting API] Hook up to Content-Security-Policy 'report-to' directive

bugzilla-daemon at webkit.org bugzilla-daemon at webkit.org
Fri Aug 19 15:15:18 PDT 2022


https://bugs.webkit.org/show_bug.cgi?id=244143

            Bug ID: 244143
           Summary: [Reporting API] Hook up to Content-Security-Policy
                    'report-to' directive
           Product: WebKit
           Version: WebKit Nightly Build
          Hardware: Unspecified
                OS: Unspecified
            Status: NEW
          Severity: Normal
          Priority: P2
         Component: WebCore Misc.
          Assignee: webkit-unassigned at lists.webkit.org
          Reporter: bfulgham at webkit.org

Implement the stubs from Bug 243908 so that we can generate Reporting API reports for Content Security Policy rules.

This patch does the following:

1. Adds support for the "Reporting-Endpoints" header.
2. Exposes a Reporting object on Document and WorkerGlobalScope that can handle reports.
3. Implements a CSSViolationReportBody class (and JS binding)
4. Update the ContentSecurityPolicy implementation to generate a CSSViolationReportBody when the CSP directives include a report-to declaration.
5. Revises the CSP implementation to construct the JSON report body to match the new specification.

-- 
You are receiving this mail because:
You are the assignee for the bug.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.webkit.org/pipermail/webkit-unassigned/attachments/20220819/b5db8240/attachment.htm>


More information about the webkit-unassigned mailing list