Content Security Policy: Difference between revisions

From annawiki
No edit summary
Line 14: Line 14:
==form-action==
==form-action==
https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Content-Security-Policy/form-action
https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Content-Security-Policy/form-action
Redirect blocking
Redirect blocking
* Firefox 57 doesn't block
* Firefox 57 doesn't block
* Chrome 63 does block
* Chrome 63 does block

Revision as of 2018-02-20T17:33:16

MediaWiki

Failing on simple lists, no bullet points shown:

  • line one
  • line two

PDF in Chrome

https://bugs.chromium.org/p/chromium/issues/detail?id=271452

object-source:none and PDF will not be shown in Chrome

SVG

form-action

https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Content-Security-Policy/form-action

Redirect blocking

  • Firefox 57 doesn't block
  • Chrome 63 does block