Closed
Bug 1251817
Opened 8 years ago
Closed 2 years ago
Implement CSP request header
Categories
(Core :: DOM: Security, defect, P3)
Core
DOM: Security
Tracking
()
RESOLVED
WONTFIX
People
(Reporter: ilya.nesterov, Unassigned)
References
(Blocks 1 open bug)
Details
(Keywords: dev-doc-needed, Whiteboard: [domsecurity-backlog2])
User Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_11_3) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/48.0.2564.109 Safari/537.36 Steps to reproduce: CSP2 https://www.w3.org/TR/CSP2/#csp-request-header introduce CSP HTTP request header, which is not implemented yet in Firefox.
Reporter | ||
Updated•8 years ago
|
Summary: CSP request header → Implement CSP request header
Component: Untriaged → DOM: Security
OS: Unspecified → All
Product: Firefox → Core
Hardware: Unspecified → All
Version: unspecified → Trunk
Updated•8 years ago
|
Status: UNCONFIRMED → NEW
Ever confirmed: true
Whiteboard: [domsecurity-backlog]
Updated•8 years ago
|
Priority: -- → P2
Updated•8 years ago
|
Priority: P2 → P3
Whiteboard: [domsecurity-backlog] → [domsecurity-backlog2]
Updated•8 years ago
|
Keywords: dev-doc-needed
Comment 1•2 years ago
|
||
This got deferred to CSP3 while it was argued, and then eventually dropped. The Sec-Fetch- headers now serve this purpose.
Status: NEW → RESOLVED
Closed: 2 years ago
Resolution: --- → WONTFIX
You need to log in
before you can comment on or make changes to this bug.
Description
•