Chromium Code Reviews
chromiumcodereview-hr@appspot.gserviceaccount.com (chromiumcodereview-hr) | Please choose your nickname with Settings | Help | Chromium Project | Gerrit Changes | Sign out
(99)

Issues Search
    My Issues | Starred     Open | Closed | All

Side by Side Diff: chrome/browser/resources/content_security_policy.html

Issue 8124010: Replace <meta> tag with header for content-security-policy on chrome:// pages. (Closed) Base URL: svn://svn.chromium.org/chrome/trunk/src/
Patch Set: '' Created 9 years, 2 months ago
Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.
Jump to:
View unified diff | Download patch | Annotate | Revision Log
« no previous file with comments | « chrome/browser/resources/bug_report_invalid.html ('k') | chrome/browser/resources/crashes.html » ('j') | no next file with comments »
Toggle Intra-line Diffs ('i') | Expand Comments ('e') | Collapse Comments ('c') | Show Comments Hide Comments ('s')
OLDNEW
(Empty)
1 <!-- Copyright (c) 2011 The Chromium Authors. All rights reserved.
2 Use of this source code is governed by a BSD-style license that can be
3 found in the LICENSE file.
4 -->
5 <!-- X-WebKit-CSP is our development name for Content-Security-Policy.
6 TODO(tsepez) rename when Content-security-policy is done.
7 TODO(tsepez) remove unsafe-eval when bidichecker_packaged.js fixed.
8 TODO(tsepez) chrome-extension: permits the ChromeVox screen reader
9 extension to function on these pages. Remove it when the extension
10 is updated to stop injecting script into the pages.
11 -->
12 <meta
13 http-equiv="X-WebKit-CSP"
14 content="object-src 'self';
15 script-src chrome://resources
16 chrome-extension://mndnfokpggljbaajbnioimlmbfngpief
17 'self'
18 'unsafe-eval'">
OLDNEW
« no previous file with comments | « chrome/browser/resources/bug_report_invalid.html ('k') | chrome/browser/resources/crashes.html » ('j') | no next file with comments »

Powered by Google App Engine
This is Rietveld 408576698