RESOLVED FIXED Bug 97256
CSP reports should send an empty "blocked-uri" rather than nothing. 
https://bugs.webkit.org/show_bug.cgi?id=97256
Summary CSP reports should send an empty "blocked-uri" rather than nothing.
Mike West
Reported 2012-09-20 13:19:12 PDT
CSP reports should send an empty "blocked-uri" rather than nothing.
Attachments
Patch (9.05 KB, patch)
2012-09-20 13:33 PDT, Mike West 		no flags
DetailsFormatted DiffDiff
View All Add attachment proposed patch, testcase, etc.
Mike West
Comment 1 2012-09-20 13:33:59 PDT
Created attachment 164973 [details] Patch
Mike West
Comment 2 2012-09-20 13:40:45 PDT
WDYT, Adam?
Adam Barth
Comment 3 2012-09-20 13:45:56 PDT
Comment on attachment 164973 [details] Patch Yeah. The spec is slightly vague about what to do here. Would you mind making the 1.1 spec clear that you should send the empty string if there isn't a URL?
Mike West
Comment 4 2012-09-20 14:18:32 PDT
(In reply to comment #3) > (From update of attachment 164973 [details]) > Yeah. The spec is slightly vague about what to do here. Would you mind making the 1.1 spec clear that you should send the empty string if there isn't a URL? I wouldn't mind at all. https://dvcs.w3.org/hg/content-security-policy/rev/30fbe5c8e84f
WebKit Review Bot
Comment 5 2012-09-20 14:24:49 PDT
Comment on attachment 164973 [details] Patch Clearing flags on attachment: 164973 Committed r129168: <http://trac.webkit.org/changeset/129168>
WebKit Review Bot
Comment 6 2012-09-20 14:24:52 PDT
All reviewed patches have been landed. Closing bug.
Note You need to log in before you can comment on or make changes to this bug.