RESOLVED DUPLICATE of bug 89750 89288
Content Security Policy sources should match against paths. 
https://bugs.webkit.org/show_bug.cgi?id=89288
Summary Content Security Policy sources should match against paths.
Mike West
Reported 2012-06-16 12:58:11 PDT
`script-src https://example.com/path/` should allow `https://example.com/path/to/javascript.js`, but deny `https://example.com/anotherpath/to/another.js`.
Attachments
Add attachment proposed patch, testcase, etc.
Adam Barth
Comment 1 2012-06-16 13:05:04 PDT
We should probably create an ENABLE flag for CSP 1.1 features so we can work on this stuff while the spec is in flux.
Mike West
Comment 2 2012-08-04 15:22:01 PDT
*** This bug has been marked as a duplicate of bug 89750 ***
Note You need to log in before you can comment on or make changes to this bug.