You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Since v0.30.3 we can register URL schemes (http, file, chrome-extension.. ) as bypassing CSP via webFrame.registerURLSchemeAsBypassingCSP.
Is there a way to register URL patterns (like https://mydomain.com/trusted-scripts/*) as bypassing CSPs?
If no, would it make sense to add such an API (webFrame.registerURLPatternAsBypassingCSP I guess)?
Any idea where I should start the implementation from on Chromium side?
The text was updated successfully, but these errors were encountered:
You could already enable this behavior by combining a custom protocol with a custom protocol handler. That said, I could see this API working out. If you'd be willing to make a PR, you might find this in core.
Since
v0.30.3
we can register URL schemes (http
,file
,chrome-extension
.. ) as bypassing CSP viawebFrame.registerURLSchemeAsBypassingCSP
.Is there a way to register URL patterns (like
https://mydomain.com/trusted-scripts/*
) as bypassing CSPs?If no, would it make sense to add such an API (
webFrame.registerURLPatternAsBypassingCSP
I guess)?Any idea where I should start the implementation from on Chromium side?
The text was updated successfully, but these errors were encountered: