Bug 264447

Summary: Improve CSP validation for AppSSO
Product: WebKit Reporter: pascoe <pascoe>
Component: WebKit Misc.Assignee: pascoe <pascoe>
Status: RESOLVED FIXED    
Severity: Normal CC: webkit-bug-importer
Priority: P2 Keywords: InRadar
Version: WebKit Nightly Build   
Hardware: Unspecified   
OS: Unspecified   

pascoe@apple.com
Reported 2023-11-08 15:24:48 PST
In https://bugs.webkit.org/show_bug.cgi?id=260100 we added additional CSP validation for AppSSO meant for Subframe initiated sessions, but it's applied to all.
Attachments
Add attachment proposed patch, testcase, etc.
pascoe@apple.com
Comment 1 2023-11-08 15:25:04 PST
rdar://118121639
pascoe@apple.com
Comment 2 2023-11-08 17:18:52 PST
Pull request: https://github.com/WebKit/WebKit/pull/20194
EWS
Comment 3 2023-11-08 23:07:37 PST
Committed 270422@main (9e08e9d30f55): <https://commits.webkit.org/270422@main> Reviewed commits have been landed. Closing PR #20194 and removing active labels.
Note You need to log in before you can comment on or make changes to this bug.