forked from w3c/webref
-
Notifications
You must be signed in to change notification settings - Fork 0
/
csp-embedded-enforcement.json
134 lines (134 loc) · 3.87 KB
/
csp-embedded-enforcement.json
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
{
"spec": {
"title": "Content Security Policy: Embedded Enforcement",
"url": "https://w3c.github.io/webappsec-cspee/"
},
"links": {
"https://github.com/w3c/webappsec": [],
"https://lists.w3.org/Archives/Public/public-webappsec/": [],
"https://www.w3.org/Mail/Request": [],
"https://www.w3.org/2011/webappsec/": [],
"https://www.w3.org/Consortium/Patent-Policy-20170801/": [
"def-essential",
"sec-Disclosure"
],
"https://www.w3.org/2004/01/pp-impl/49309/status": [],
"https://www.w3.org/2020/Process-20200915/": [],
"https://html.spec.whatwg.org/": [
"the-iframe-element",
"nested-browsing-context",
"navigate",
"concept-element-attributes",
"concept-document-bc",
"htmliframeelement",
"cereactions",
"browsing-context",
"process-a-navigate-response",
"process-a-navigate-fetch",
"active-document",
"browsing-context-container",
"parent-browsing-context",
"concept-origin",
"concept-origin-scheme",
"ascii-serialisation-of-an-origin",
"concept-origin-opaque",
"source-browsing-context"
],
"https://w3c.github.io/webappsec-csp/": [
"header-content-security-policy",
"grammardef-serialized-policy",
"parse-serialized-policy",
"policy-directive-set",
"report-uri",
"report-to",
"serialized-csp",
"grammardef-hash-source",
"violation-policy",
"csp-list",
"content-security-policy-object",
"policy-disposition",
"directive-name",
"directive-value",
"source-lists",
"directives",
"grammardef-none",
"grammardef-scheme-source",
"grammardef-host-source",
"grammardef-keyword-source",
"grammardef-nonce-source",
"grammardef-scheme-part",
"grammardef-self",
"grammardef-unsafe-inline",
"grammardef-strict-dynamic",
"grammardef-host-part",
"grammardef-port-part",
"grammardef-path-part",
"source-expression",
"scheme-part-match",
"host-part-match",
"port-part-match",
"path-part-match",
"source-list-allows-all-inline-behavior",
"frame-ancestors"
],
"https://fetch.spec.whatwg.org/": [
"navigation-request",
"concept-request",
"concept-request-client",
"concept-header-list-append",
"concept-request-header-list",
"http-origin",
"http-new-header-syntax",
"concept-response",
"concept-response-csp-list",
"concept-request-origin",
"concept-response-url",
"local-scheme",
"concept-response-header-list"
],
"https://infra.spec.whatwg.org/": [
"string",
"list-contain",
"iteration-continue",
"list-is-empty",
"ordered-set",
"set-append",
"ascii-case-insensitive",
"list"
],
"https://dom.spec.whatwg.org/": [
"concept-element",
"concept-node-document",
"concept-reflect"
],
"https://developer.mozilla.org/en-US/docs/Web/API/HTMLIFrameElement/csp": [],
"https://heycam.github.io/webidl/": [
"idl-DOMString"
],
"https://github.com/w3c/html/issues/584": [],
"https://www.w3.org/TR/CSP3/": [
"multiple-policies",
"parse-serialized-policy",
"match-schemes",
"match-hosts",
"match-ports",
"match-paths",
"allow-all-inline"
],
"https://drafts.csswg.org/css-values-4/": [
"mult-zero-plus"
],
"https://url.spec.whatwg.org/": [
"concept-url-origin",
"concept-url-scheme"
],
"https://encoding.spec.whatwg.org/": [
"utf-8-encode"
],
"https://twitter.com/0x6D6172696F/status/810066803653308416": [],
"https://www.w3.org/TR/css-values-4/": [],
"https://tools.ietf.org/html/rfc2119": [],
"https://datatracker.ietf.org/doc/html/rfc3864": [],
"https://datatracker.ietf.org/doc/html/rfc5234": []
}
}