Christoph Kerschbaumer
|
920a60992c
|
Bug 1458504 - Move Tokenizer into it's own file so it can be shared by the CSP Parser and the Feature Policy Parser. r=jkt
|
2018-05-02 16:36:51 +02:00 |
|
Christoph Kerschbaumer
|
2fd8493f7f
|
Bug 1302667 - CSP: Implement 'worker-src'. r=baku,dveditz,mckinley
|
2017-10-30 18:45:36 +01:00 |
|
Coroiu Cristina
|
44d1b50592
|
Backed out changeset 70ccfda99dbc::ca6ae38c0432 (bug 1302667) for frequently failing mochitest in security/test/csp/test_worker_src.html r=backout a=backout on a CLOSED TREE
Backed out changeset ca6ae38c0432 (bug 1302667)
Backed out changeset ff86e185e09d (bug 1302667)
Backed out changeset 8ec6b8bf8c6c (bug 1302667)
Backed out changeset 21c73f9d8fac (bug 1302667)
Backed out changeset e982481dbf2c (bug 1302667)
Backed out changeset 70ccfda99dbc (bug 1302667)
|
2017-10-30 14:19:29 +02:00 |
|
Christoph Kerschbaumer
|
58b63c1576
|
Bug 1302667 - CSP: Implement 'worker-src'. r=baku,dveditz,mckinley
|
2017-10-30 09:10:36 +01:00 |
|
Christoph Kerschbaumer
|
4956d67907
|
Bug 1367531: CSP should only check host (not including path) when performing frame ancestors checks. r=dveditz
|
2017-06-06 09:12:13 +02:00 |
|
Ehsan Akhgari
|
4ef7762311
|
Bug 1331838 - Remove support for app URIs in CSP directives; r=ckerschb
|
2017-01-18 15:18:29 -05:00 |
|
Sebastian Hengst
|
5baf0e453e
|
Backed out changeset 8acb67f2e136 (bug 1331838) for failing GTest CSPParser.SimplePolicies. r=backout on a CLOSED TREE
|
2017-01-18 17:28:03 +01:00 |
|
Ehsan Akhgari
|
42a8bbcbb1
|
Bug 1331838 - Remove support for app URIs in CSP directives; r=ckerschb
|
2017-01-18 08:57:13 -05:00 |
|
Christoph Kerschbaumer
|
611dfdf9b7
|
Bug 1299483 - CSP: Implement 'strict-dynamic', parser changes. r=dveditz,freddyb
|
2016-11-08 13:08:33 +01:00 |
|
Henry Chang
|
f9eeeb2620
|
Bug 1229639 - Part 1: Match CSP host source with percent-decoded URI. r=ckerschb
MozReview-Commit-ID: CSGeoSR2qw8
--HG--
extra : rebase_source : f64cb0b9cab61ec09faa29139f72d28272fbbedb
|
2016-09-06 18:29:26 +08:00 |
|
Christoph Kerschbaumer
|
df1432e805
|
Bug 1290560 - Update CSPParser to handle 'sandbox', 'require-sri' and 'report-uri' with no valid srcs correctly. r=dveditz
|
2016-08-19 18:41:45 +02:00 |
|
Christoph Kerschbaumer
|
ec59af86d9
|
Bug 1289085: CSP - Bail early if referrer directive has no valid src. r=dveditz
|
2016-07-31 07:57:22 +02:00 |
|
Paul Roberts
|
ec18fc5ff7
|
Bug 671389 - Implement CSP sandbox directive. r=ckerschb r=smaug
--HG--
extra : rebase_source : d9c5f5868c2558a3696cd489674da6f243be11ad
|
2016-06-29 07:48:44 -07:00 |
|
Jonathan Kingston
|
daa6f72c59
|
Bug 1279420 - Adding in security.csp.experimentalEnabled pref check to require-sri-for directive in CSP. r=ckerschb
MozReview-Commit-ID: 799ZZoW0YiG
--HG--
extra : transplant_source : %CAC%12%16%C6a%10AP%BEc%85%BA%93Z%7Cq%D43%8D
|
2016-06-20 19:49:38 +01:00 |
|
Frederik Braun
|
404a0bbb99
|
Bug 1265318: add require-sri-for CSP directive. r=ckerschb
MozReview-Commit-ID: 200PAvKtBME
|
2016-05-31 11:14:00 +02:00 |
|
Christoph Kerschbaumer
|
a9a95d1918
|
Bug 1261634 - Update whitespace skipping for meta csp. r=dveditz
|
2016-04-21 21:15:06 +02:00 |
|
Christoph Kerschbaumer
|
96f42dd458
|
Bug 663570 - MetaCSP Part 1: CSP parser changes (r=sicking)
|
2015-11-14 19:27:59 -08:00 |
|
Christoph Kerschbaumer
|
50588ca7c1
|
Bug 1188028 - Queue up CSP console messages till windowID is available (r=sicking)
|
2015-11-11 06:23:57 -08:00 |
|
Kate McKinley
|
67f4155fe6
|
Bug 1045891 - CSP 2 child-src implementation r=ckerschb
|
2015-10-28 16:32:27 -07:00 |
|
Andrew McCreight
|
9e8f4b219e
|
Bug 1152551, part 2 - Fix mode lines in dom/. r=jst
|
2015-05-03 15:32:37 -04:00 |
|
Christoph Kerschbaumer
|
b2c8937b41
|
Bug 1004703 - ignore 'unsafe-inline' if nonce- or hash-source specified (r=sstamm)
--HG--
extra : rebase_source : 119d3903ba156300f49f097efe2d18bbf8c8a6b5
|
2015-04-07 09:06:05 -07:00 |
|
Ryan VanderMeulen
|
b83ba6b825
|
Backed out 4 changesets (bug 671389) for frequent B2G debug test_tcpsocket_client_and_server_basics.html crashes.
Backed out changeset b782435e5640 (bug 671389)
Backed out changeset 0f8d62109bfe (bug 671389)
Backed out changeset 8d6021f66c49 (bug 671389)
Backed out changeset cd3e227df9dc (bug 671389)
|
2015-02-05 16:48:18 -05:00 |
|
Deian Stefan
|
53375db2ef
|
Bug 671389 - Part 1: Implement CSP sandbox directive r=ckerschb,smaug
|
2015-02-03 23:40:00 +01:00 |
|
Sid Stamm
|
7ddbe36414
|
Bug 965727 - Implement referrer directive for CSP. (r=jst,ckerschb)
|
2014-12-17 14:14:04 -05:00 |
|
Christoph Kerschbaumer
|
590d997fd0
|
Bug 1094067 - CSP: Parser should follow path production from RFC 3986 (r=sstamm)
|
2014-11-14 15:05:36 -08:00 |
|
Christoph Kerschbaumer
|
ab97bec4cb
|
Bug 1089912: Part 1, move csp into dom/security (r=sstamm,jst)
--HG--
rename : dom/base/nsIContentSecurityPolicy.idl => dom/interfaces/security/nsIContentSecurityPolicy.idl
rename : dom/base/nsCSPContext.cpp => dom/security/nsCSPContext.cpp
rename : dom/base/nsCSPContext.h => dom/security/nsCSPContext.h
rename : dom/base/nsCSPParser.cpp => dom/security/nsCSPParser.cpp
rename : dom/base/nsCSPParser.h => dom/security/nsCSPParser.h
rename : dom/base/nsCSPService.cpp => dom/security/nsCSPService.cpp
rename : dom/base/nsCSPService.h => dom/security/nsCSPService.h
rename : dom/base/nsCSPUtils.cpp => dom/security/nsCSPUtils.cpp
rename : dom/base/nsCSPUtils.h => dom/security/nsCSPUtils.h
|
2014-10-27 16:58:20 -07:00 |
|