chrome/browser/resources/content_security_policy.html - Issue 8124010: Replace <meta> tag with header for content-security-policy on chrome:// pages.

Side by Side Diff

Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.

Keyboard Shortcuts

	File
u :	up to issue
j / k :	jump to file after / before current file
J / K :	jump to next file with a comment after / before current file
	Side-by-side diff
i :	toggle intra-line diffs
e :	expand all comments
c :	collapse all comments
s :	toggle showing all comments
n / p :	next / previous diff chunk or comment
N / P :	next / previous comment
<Up> / <Down> :	next / previous line

	Issue
u :	up to list of issues
j / k :	jump to patch after / before current patch
o / <Enter> :	open current patch in side-by-side view
i :	open current patch in unified diff view

	Issue List
j / k :	jump to issue after / before current issue
o / <Enter> :	open current issue

Side by Side Diff: chrome/browser/resources/content_security_policy.html

Issue 8124010: Replace <meta> tag with header for content-security-policy on chrome:// pages. (Closed) Base URL: svn://svn.chromium.org/chrome/trunk/src/

Patch Set: Created 9 years, 2 months ago

Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.

Jump to:

View unified diff | Download patch | Annotate | Revision Log

OLD	NEW
	(Empty)
1 <!-- Copyright (c) 2011 The Chromium Authors. All rights reserved.

2 Use of this source code is governed by a BSD-style license that can be

3 found in the LICENSE file.

4 -->

5 <!-- X-WebKit-CSP is our development name for Content-Security-Policy.

6 TODO(tsepez) rename when Content-security-policy is done.

7 TODO(tsepez) remove unsafe-eval when bidichecker_packaged.js fixed.

8 TODO(tsepez) chrome-extension: permits the ChromeVox screen reader

9 extension to function on these pages. Remove it when the extension

10 is updated to stop injecting script into the pages.

11 -->

12 <meta

13 http-equiv="X-WebKit-CSP"

14 content="object-src 'self';

15 script-src chrome://resources

16 chrome-extension://mndnfokpggljbaajbnioimlmbfngpief

17 'self'

18 'unsafe-eval'">

OLD	NEW