Content Security Policy: Difference between revisions
No edit summary |
|||
Line 1: | Line 1: | ||
==PDF in Chrome== | ==PDF in Chrome== | ||
https://bugs.chromium.org/p/chromium/issues/detail?id=271452 | https://bugs.chromium.org/p/chromium/issues/detail?id=271452 | ||
Line 18: | Line 13: | ||
* Firefox 57 doesn't block | * Firefox 57 doesn't block | ||
* Chrome 63 does block | * Chrome 63 does block | ||
==MediaWiki== | |||
Failing on simple lists, no bullet points shown: | |||
* line one | |||
* line two | |||
form-action - Chrome blocks redirect after text edit |
Latest revision as of 2018-02-20T18:07:52
PDF in Chrome
https://bugs.chromium.org/p/chromium/issues/detail?id=271452
object-source:none and PDF will not be shown in Chrome
SVG
- Content Security Policy - SVG - styles are unsafe-inline in Firefox and Edge
form-action
https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Content-Security-Policy/form-action
Redirect blocking - will disturb MediaWiki page reading after submitting a change
- Firefox 57 doesn't block
- Chrome 63 does block
MediaWiki
Failing on simple lists, no bullet points shown:
- line one
- line two
form-action - Chrome blocks redirect after text edit