| OLD | NEW |
|---|
| 1 <?php | 1 <?php |
| 2 if ($_GET["report-only"]) { | 2 if ($_GET["suborigin"]) { |
| 3 header("Content-Security-Policy-Report-Only: suborigin " . $_GET["suborigin"
]); | |
| 4 } else { | |
| 5 header("Content-Security-Policy: suborigin " . $_GET["suborigin"]); | 3 header("Content-Security-Policy: suborigin " . $_GET["suborigin"]); |
| 6 } | 4 } |
| 7 ?> | 5 ?> |
| 8 <!DOCTYPE html> | 6 <!DOCTYPE html> |
| 9 <script> | 7 <script> |
| 10 document.domain = '127.0.0.1'; | 8 try { |
| 11 window.parent.secret = 'I am a secret'; | 9 document.domain = '127.0.0.1'; |
| 10 window.parent.secret = 'I am a secret'; |
| 11 } catch (e) { |
| 12 parent.postMessage('' + e, '*'); |
| 13 } |
| 14 |
| 12 parent.postMessage('Done', '*'); | 15 parent.postMessage('Done', '*'); |
| 13 </script> | 16 </script> |
| OLD | NEW |
|---|
Chromium Code Reviews
Issue 1180923003:
Add window access checks for Suborigins (Closed)
Base URL: https://chromium.googlesource.com/chromium/blink.git@master