Skip to content

Commit

Permalink
Implement CSPEE Blanket Enforcement logic out-of-blink
Browse files Browse the repository at this point in the history 
This changes adds to the AncestorThrottle a check for the step
"Does response allow blanket enforcement of policy from request" of
Content Security Policy: Embedded Enforcement:
https://w3c.github.io/webappsec-cspee/#origin-allowed Behind the flag

This is one of the steps of moving CSPEE out-of-blink and is hidden
under the flag network::features::kOutOfBlinkCSPEE.

Change-Id: Id3092322134e055810d4006e63e6974ee64315be
Bug: 1094909
  • Loading branch information
@antosart @chromium-wpt-export-bot
antosart authored and chromium-wpt-export-bot committed Jun 30, 2020
1 parent a9e30a8 commit 112fa7d
Showing 1 changed file with 1 addition and 1 deletion.
2 changes: 1 addition & 1 deletion content-security-policy/embedded-enforcement/support/testharness-helper.sub.js
View file
Original file line number Diff line number Diff line change
Expand Up @@ -17,7 +17,7 @@ const IframeLoad = {

function getOrigin() {
var url = new URL("http://{{host}}:{{ports[http][0]}}/");
return url.toString();
return url.origin;
}

function getCrossOrigin() {
Expand Down

0 comments on commit 112fa7d

Please sign in to comment.