Commit message (Collapse) | Author | Age | Lines | |
---|---|---|---|---|
* | Remove all C++ Telemetry Accumulation calls. | wolfbeast | 2018-09-03 | -40/+1 |
| | | | | | This creates a number of stubs and leaves some surrounding code that may be irrelevant (eg. recorded time stamps, status variables). Stub resolution/removal should be a follow-up to this. | |||
* | nsIContentPolicy::TYPE_DOCUMENT - Use "aLoadInfo->ContextForTopLevelLoad()" ↵ | janekptacijarabaci | 2018-07-05 | -1/+1 |
| | | | | | | instead of "aLoadInfo->LoadingNode()" Issue #600 | |||
* | Bug 1469150 - CSP: Scripts with valid nonce get blocked if URL redirects is ↵ | janekptacijarabaci | 2018-06-23 | -2/+2 |
| | | | | fixed (follow up) | |||
* | Bug 1469150 - Tests added to check scripts with valid nonce is allowed if ↵ | janekptacijarabaci | 2018-06-23 | -0/+0 |
| | | | | URL redirects (follow up) | |||
* | Bug 1469150 - CSP: Scripts with valid nonce get blocked if URL redirects | janekptacijarabaci | 2018-06-21 | -1/+100 |
| | | | | https://bugzilla.mozilla.org/show_bug.cgi?id=1469150 | |||
* | Bug 1430758 - No CSP directive for nsIContentPolicy::TYPE_SAVEAS_DOWNLOAD | janekptacijarabaci | 2018-06-17 | -0/+3 |
| | ||||
* | Bug 1398229 - Save-link-as feature should use the loading principal - ↵ | janekptacijarabaci | 2018-06-17 | -0/+13 |
| | | | | implementation of nsIContentPolicy.TYPE_SAVE_AS_DOWNLOAD | |||
* | Remove support and tests for HSTS priming from the tree. Fixes #384 | Gaming4JC | 2018-05-26 | -948/+8 |
| | ||||
* | Remove MOZ_B2G leftovers and some dead B2G-only components. | wolfbeast | 2018-05-12 | -9/+0 |
| | ||||
* | Bug 1359204 - Do not query nested URI within CheckChannel in ↵ | janekptacijarabaci | 2018-04-30 | -7/+0 |
| | | | | ContentSecurityManager | |||
* | Bug 1182569: Update ContentSecurityManager to handle docshell loads | janekptacijarabaci | 2018-04-30 | -17/+64 |
| | ||||
* | moebius#187: DOM - nsIContentPolicy - context (document) | janekptacijarabaci | 2018-04-23 | -20/+43 |
| | | | | https://github.com/MoonchildProductions/moebius/pull/187 | |||
* | Revert "Bug 1182569: Update ContentSecurityManager to handle docshell loads" | janekptacijarabaci | 2018-04-22 | -64/+17 |
| | | | | This reverts commit 2e33335820b2816bee111e78588ac82e401c86ae. | |||
* | Bug 1182569: Update ContentSecurityManager to handle docshell loads | janekptacijarabaci | 2018-04-22 | -17/+64 |
| | | | | native in moebius | |||
* | Bug 1329288: Allow content policy consumers to identify contentPolicy checks ↵ | janekptacijarabaci | 2018-04-22 | -2/+3 |
| | | | | from docshell | |||
* | Bug 1329288 - Test ContentPolicy blocks opening a new window | janekptacijarabaci | 2018-04-22 | -0/+1 |
| | ||||
* | moebius#230: Consider blocking top level window data: URIs (part 3/3 without ↵ | janekptacijarabaci | 2018-04-22 | -0/+49 |
| | | | | | | tests) https://github.com/MoonchildProductions/moebius/pull/230 | |||
* | moebius#226: Consider blocking top level window data: URIs (part 2/2 without ↵ | janekptacijarabaci | 2018-04-22 | -57/+149 |
| | | | | | | tests) https://github.com/MoonchildProductions/moebius/pull/226 | |||
* | moebius#223: Consider blocking top level window data: URIs (part 1/3 without ↵ | janekptacijarabaci | 2018-04-22 | -0/+476 |
| | | | | | | tests) https://github.com/MoonchildProductions/moebius/pull/223 | |||
* | moebius#159: CSP - support for "frame-ancestors" in ↵ | janekptacijarabaci | 2018-04-14 | -8/+74 |
| | | | | | | "Content-Security-Policy-Report-Only" https://github.com/MoonchildProductions/moebius/pull/159 | |||
* | Bug 1288768 - Better error reporting for network errors in workers | janekptacijarabaci | 2018-04-04 | -11/+2 |
| | ||||
* | Add support for CSP v3 "worker-src" directive | wolfbeast | 2018-03-03 | -44/+463 |
| | ||||
* | CSP: connect-src 'self' should always include https: and wss: schemes | janekptacijarabaci | 2018-02-22 | -11/+168 |
| | ||||
* | CSP: Support IDNs in connect-src | janekptacijarabaci | 2018-02-22 | -2/+135 |
| | ||||
* | CSP: Ignore nonces on <img> per spec | janekptacijarabaci | 2018-02-22 | -4/+111 |
| | ||||
* | CSP: Upgrade SO navigational requests per spec. | janekptacijarabaci | 2018-02-22 | -0/+184 |
| | ||||
* | CSP 2 - ignore (x-)frame-options if CSP with frame-ancestors directive exists | janekptacijarabaci | 2018-02-22 | -0/+104 |
| | ||||
* | Explicitly cancel channel after mixed content redirect. | wolfbeast | 2018-02-08 | -1/+6 |
| | ||||
* | CSP should only check host (not including path) when performing frame ↵ | wolfbeast | 2018-02-06 | -0/+19 |
| | | | | | | ancestors checks. This has been explicitly stated in the CSP-3 spec. | |||
* | Add m-esr52 at 52.6.0 | Matt A. Tobin | 2018-02-02 | -0/+31574 |