RESOLVED FIXED 99250
CSP source expressions should support paths at file-level granularity. 
https://bugs.webkit.org/show_bug.cgi?id=99250
Summary CSP source expressions should support paths at file-level granularity.
Mike West
Reported 2012-10-13 08:40:02 PDT
As per https://dvcs.w3.org/hg/content-security-policy/rev/c29f8817f682, and discussion at http://lists.w3.org/Archives/Public/public-webappsec/2012Sep/0099.html: * 'example.com/js' matches a file named 'js' * 'example.com/js/' matches all files under a directory named 'js' (note the trailing slash) * 'example.com/js/file.js' matches only a file named 'file.js' inside a directory named 'js'
Attachments
Patch (10.66 KB, patch)
2012-10-13 08:49 PDT, Mike West 		no flags
DetailsFormatted DiffDiff
View All Add attachment proposed patch, testcase, etc.
Mike West
Comment 1 2012-10-13 08:49:18 PDT
Created attachment 168555 [details] Patch
Adam Barth
Comment 2 2012-10-14 22:58:30 PDT
This seems like a good resolution.
Mike West
Comment 3 2012-10-14 23:59:12 PDT
Comment on attachment 168555 [details] Patch Thanks, throwing this in the queue.
WebKit Review Bot
Comment 4 2012-10-15 10:33:14 PDT
Comment on attachment 168555 [details] Patch Clearing flags on attachment: 168555 Committed r131317: <http://trac.webkit.org/changeset/131317>
WebKit Review Bot
Comment 5 2012-10-15 10:33:17 PDT
All reviewed patches have been landed. Closing bug.
Note You need to log in before you can comment on or make changes to this bug.