Check X-Frame-Options and CSP frame-ancestors in network process
[WebKit.git] / Source / WebCore / page / csp / ContentSecurityPolicy.h
2018-05-08 dbates@webkit.orgCheck X-Frame-Options and CSP frame-ancestors in networ...
2018-05-08 dbates@webkit.orgAbstract logic to log console messages and send CSP...
2018-05-07 dbates@webkit.orgCSP status-code incorrect for document blocked due...
2018-05-07 dbates@webkit.orgCSP should be passed the referrer
2018-04-20 cdumez@apple.comRename JSDOMWindowProxy to JSWindowProxy
2018-03-30 youenn@apple.comNetworkLoadChecker should upgrade redirects if needed
2018-03-28 cdumez@apple.comMake it possible to call ContentSecurityPolicy::upgrade...
2017-12-06 commit-queue@webki... [Web App Manifest] Support fetching the app manifest
2017-08-10 cdumez@apple.com[Beacon] Do connect-src CSP check on redirects as well
2017-06-29 jfbastien@apple.comWebAssembly: disable some APIs under CSP
2017-06-19 aperez@igalia.comMissing <functional> includes make builds fail with...
2017-06-13 commit-queue@webki... Rename JSDOMWindowShell to JSDOMWindowProxy to match...
2017-04-21 weinig@apple.comSplit cryptographic digest computation and parsing...
2017-02-03 dbates@webkit.org[Mac][WK2] Add SPI to override the Content Security...
2017-01-20 commit-queue@webki... Remove outdated ENABLE(CSP_NEXT) build flag
2016-12-08 dbates@webkit.orgImplement Strict Mixed Content Checking
2016-10-11 dbates@webkit.org[iOS] Sandbox QuickLook previews
2016-09-22 commit-queue@webki... Refactor ContentSecurityPolicy::allow* methods
2016-08-16 bfulgham@apple.comUpgrade-Insecure-Request state is improperly retained...
2016-07-22 dbates@webkit.orgCSP: object-src and plugin-types directives are not...
2016-07-19 dbates@webkit.orgCSP: Improve support for multiple policies to more...
2016-06-07 bfulgham@apple.comCSP: Content Security Policy directive, upgrade-insecur...
2016-06-07 commit-queue@webki... Unreviewed, rolling out r201679.
2016-06-04 bfulgham@apple.comCSP: Content Security Policy directive, upgrade-insecur...
2016-04-27 dbates@webkit.orgCSP: Add app-specific workaround for Ecobee and Quora
2016-04-25 dbates@webkit.orgREGRESSION (r196012): Subresource may be blocked by...
2016-04-17 darin@apple.comRemove more uses of Deprecated::ScriptXXX
2016-04-15 dbates@webkit.orgCSP: Ignore paths in CSP matching after redirects
2016-04-14 dbates@webkit.orgCSP: Remove experimental directive reflected-xss
2016-03-25 dbates@webkit.orgCSP: Move logic for reporting a violation from ContentS...
2016-03-24 dbates@webkit.orgCSP: Simplify logic for checking policies
2016-03-18 dbates@webkit.orgCleanup: Remove the need to pass reporting status to...
2016-03-11 dbates@webkit.orgCSP: Implement frame-ancestors directive
2016-03-10 dbates@webkit.orgCSP: Implement support for script and style nonces
2016-03-10 dbates@webkit.orgCSP: Implement support for inline script and inline...
2016-02-21 dbates@webkit.orgCSP: sandbox directive should be ignored when contained...
2016-02-15 dbates@webkit.orgCSP: 'sandbox' should be ignored in report-only mode
2016-02-13 dbates@webkit.orgCSP: Implement child-src directive
2016-02-10 dbates@webkit.orgCSP: Extract helper classes into their own files
2016-02-07 dbates@webkit.orgCSP: Allow Web Workers initiated from an isolated world...
2016-02-02 dbates@webkit.orgCSP: Support checking content security policy without...
2016-02-01 dbates@webkit.orgCSP: Use the served CSP header for dedicated workers
2016-01-28 dbates@webkit.orgMove ContentSecurityPolicy.{cpp, h} to its own directory