Commit message (Collapse) | Author | Age | Lines | |
---|---|---|---|---|
* | Bug 1182569: Update ContentSecurityManager to handle docshell loads | janekptacijarabaci | 2018-04-30 | -17/+64 |
| | ||||
* | moebius#187: DOM - nsIContentPolicy - context (document) | janekptacijarabaci | 2018-04-23 | -20/+43 |
| | | | | https://github.com/MoonchildProductions/moebius/pull/187 | |||
* | Revert "Bug 1182569: Update ContentSecurityManager to handle docshell loads" | janekptacijarabaci | 2018-04-22 | -64/+17 |
| | | | | This reverts commit 2e33335820b2816bee111e78588ac82e401c86ae. | |||
* | Bug 1182569: Update ContentSecurityManager to handle docshell loads | janekptacijarabaci | 2018-04-22 | -17/+64 |
| | | | | native in moebius | |||
* | Bug 1329288: Allow content policy consumers to identify contentPolicy checks ↵ | janekptacijarabaci | 2018-04-22 | -2/+3 |
| | | | | from docshell | |||
* | Bug 1329288 - Test ContentPolicy blocks opening a new window | janekptacijarabaci | 2018-04-22 | -0/+1 |
| | ||||
* | moebius#230: Consider blocking top level window data: URIs (part 3/3 without ↵ | janekptacijarabaci | 2018-04-22 | -0/+49 |
| | | | | | | tests) https://github.com/MoonchildProductions/moebius/pull/230 | |||
* | moebius#226: Consider blocking top level window data: URIs (part 2/2 without ↵ | janekptacijarabaci | 2018-04-22 | -57/+149 |
| | | | | | | tests) https://github.com/MoonchildProductions/moebius/pull/226 | |||
* | moebius#223: Consider blocking top level window data: URIs (part 1/3 without ↵ | janekptacijarabaci | 2018-04-22 | -0/+476 |
| | | | | | | tests) https://github.com/MoonchildProductions/moebius/pull/223 | |||
* | moebius#159: CSP - support for "frame-ancestors" in ↵ | janekptacijarabaci | 2018-04-14 | -8/+74 |
| | | | | | | "Content-Security-Policy-Report-Only" https://github.com/MoonchildProductions/moebius/pull/159 | |||
* | Bug 1288768 - Better error reporting for network errors in workers | janekptacijarabaci | 2018-04-04 | -11/+2 |
| | ||||
* | Add support for CSP v3 "worker-src" directive | wolfbeast | 2018-03-03 | -44/+463 |
| | ||||
* | CSP: connect-src 'self' should always include https: and wss: schemes | janekptacijarabaci | 2018-02-22 | -11/+168 |
| | ||||
* | CSP: Support IDNs in connect-src | janekptacijarabaci | 2018-02-22 | -2/+135 |
| | ||||
* | CSP: Ignore nonces on <img> per spec | janekptacijarabaci | 2018-02-22 | -4/+111 |
| | ||||
* | CSP: Upgrade SO navigational requests per spec. | janekptacijarabaci | 2018-02-22 | -0/+184 |
| | ||||
* | CSP 2 - ignore (x-)frame-options if CSP with frame-ancestors directive exists | janekptacijarabaci | 2018-02-22 | -0/+104 |
| | ||||
* | Explicitly cancel channel after mixed content redirect. | wolfbeast | 2018-02-08 | -1/+6 |
| | ||||
* | CSP should only check host (not including path) when performing frame ↵ | wolfbeast | 2018-02-06 | -0/+19 |
| | | | | | | ancestors checks. This has been explicitly stated in the CSP-3 spec. | |||
* | Add m-esr52 at 52.6.0 | Matt A. Tobin | 2018-02-02 | -0/+31574 |