Summary: | X-Frame-Options header should be ignored when frame-ancestors CSP directive is present | ||||||||
---|---|---|---|---|---|---|---|---|---|
Product: | WebKit | Reporter: | Chris Dumez <cdumez> | ||||||
Component: | Page Loading | Assignee: | Chris Dumez <cdumez> | ||||||
Status: | RESOLVED FIXED | ||||||||
Severity: | Normal | CC: | achristensen, beidson, bfulgham, commit-queue, dbates, ews-watchlist, ggaren, japhet, krollin, mkwst, webkit-bug-importer, wilander, youennf | ||||||
Priority: | P2 | Keywords: | InRadar | ||||||
Version: | WebKit Nightly Build | ||||||||
Hardware: | Unspecified | ||||||||
OS: | Unspecified | ||||||||
URL: | https://www.w3.org/TR/CSP3/#frame-ancestors-and-frame-options | ||||||||
Attachments: |
|
Description
Chris Dumez
2019-04-23 21:04:52 PDT
Created attachment 368110 [details]
Patch
Created attachment 368111 [details]
Patch
Comment on attachment 368111 [details] Patch Clearing flags on attachment: 368111 Committed r244589: <https://trac.webkit.org/changeset/244589> All reviewed patches have been landed. Closing bug. |