Document::securityOrigin() should return a reference.
[WebKit-https.git] / Source / WebCore / page / csp / ContentSecurityPolicy.cpp
2017-01-18 akling@apple.comDocument::securityOrigin() should return a reference.
2017-01-05 darin@apple.comRemove PassRefPtr use from the "html" directory, other...
2016-12-09 dbates@webkit.org[CSP] Policy of window opener not applied to about...
2016-12-08 dbates@webkit.orgImplement Strict Mixed Content Checking
2016-11-17 utatane.tea@gmail.com[JSC] WTF::TemporaryChange with WTF::SetForScope
2016-10-24 achristensen@apple.comURL::port should return Optional<uint16_t>
2016-09-22 dbates@webkit.org[CSP] Violation report may be sent to wrong domain...
2016-09-22 commit-queue@webki... Refactor ContentSecurityPolicy::allow* methods
2016-08-16 bfulgham@apple.comUpgrade-Insecure-Request state is improperly retained...
2016-07-22 dbates@webkit.orgCSP: object-src and plugin-types directives are not...
2016-07-19 dbates@webkit.orgCSP: Improve support for multiple policies to more...
2016-06-20 krollin@apple.comRemove RefPtr::release() and change calls sites to...
2016-06-15 cdumez@apple.comDrop some unnecessary header includes
2016-06-07 bfulgham@apple.comCSP: Content Security Policy directive, upgrade-insecur...
2016-06-07 commit-queue@webki... Unreviewed, rolling out r201679.
2016-06-04 bfulgham@apple.comCSP: Content Security Policy directive, upgrade-insecur...
2016-04-27 dbates@webkit.orgCSP: Add app-specific workaround for Ecobee and Quora
2016-04-25 dbates@webkit.orgREGRESSION (r196012): Subresource may be blocked by...
2016-04-15 dbates@webkit.orgCSP: Ignore paths in CSP matching after redirects
2016-04-14 dbates@webkit.orgCSP: Remove experimental directive reflected-xss
2016-04-01 dbates@webkit.orgCSP: child-src violations reported as frame-src violation
2016-04-01 dbates@webkit.orgREGRESSION (r197724): <object>/<embed> with no URL...
2016-03-25 dbates@webkit.orgCSP: Move logic for reporting a violation from ContentS...
2016-03-24 dbates@webkit.orgCSP: Simplify logic for checking policies
2016-03-22 dbates@webkit.orgCSP: Should only execute <script> or apply <style>...
2016-03-18 dbates@webkit.orgCleanup: Remove the need to pass reporting status to...
2016-03-11 dbates@webkit.orgCSP: Implement frame-ancestors directive
2016-03-10 dbates@webkit.orgCSP: Implement support for script and style nonces
2016-03-10 dbates@webkit.orgCSP: Implement support for inline script and inline...
2016-02-25 dbates@webkit.orgCSP: Make SecurityPolicyViolationEvent more closely...
2016-02-21 dbates@webkit.orgCSP: Violation report should include column number
2016-02-21 dbates@webkit.orgCSP: Violation report should include HTTP status code...
2016-02-21 dbates@webkit.orgCSP: sandbox directive should be ignored when contained...
2016-02-16 dbates@webkit.orgCSP: Update violation report 'Content-Type' header
2016-02-15 dbates@webkit.orgCSP: 'sandbox' should be ignored in report-only mode
2016-02-15 dbates@webkit.orgCSP: Allow schemeless source expressions to match an...
2016-02-13 dbates@webkit.orgCSP: Implement child-src directive
2016-02-11 jiewen_tan@apple.comRename *Event::create* which creates events for binding...
2016-02-10 dbates@webkit.orgCSP: Extract helper classes into their own files
2016-02-07 dbates@webkit.orgCSP: Allow Web Workers initiated from an isolated world...
2016-02-02 dbates@webkit.orgCSP: Support checking content security policy without...
2016-02-01 dbates@webkit.orgCSP: Use the served CSP header for dedicated workers
2016-01-28 darin@apple.comRemove equalIgnoringCase since all callers really wante...
2016-01-28 dbates@webkit.orgMove ContentSecurityPolicy.{cpp, h} to its own directory