Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Fixed securityviolationevent not containing the full src and path #13306

Closed
wants to merge 1 commit into from
Closed

Fixed securityviolationevent not containing the full src and path #13306

wants to merge 1 commit into from

Conversation

chromium-wpt-export-bot
Copy link
Collaborator

Modified resource fetching to allow piping back to the ResourceClient a
struct needed for firing the securityviolationevent. This allows us
to specify the targeted element as well in the event.

CSP violation events have overly vague srcElement and path when being
triggered for an element that requires a fetch because the element is not
being passed down to where the csp check takes place and the report is
fired.

Bug: 737647
Change-Id: I944ea2ea69447c612c01b9e6f723f110fa28a1f5

Reviewed-on: https://chromium-review.googlesource.com/558917
WPT-Export-Revision: 31f217e45648ca2ab02d5c681cde6e48f0134852

@andypaicu
Fixed securityviolationevent not containing the full src and path
3fee9e1 
Modified resource fetching to allow piping back to the ResourceClient a
struct needed for firing the securityviolationevent. This allows us
to specify the targeted element as well in the event.

CSP violation events have overly vague srcElement and path when being
triggered for an element that requires a fetch because the element is not
being passed down to where the csp check takes place and the report is
fired.

Bug: 737647
Change-Id: I944ea2ea69447c612c01b9e6f723f110fa28a1f5
wpt-pr-bot
wpt-pr-bot approved these changes Oct 2, 2018
View reviewed changes
Copy link
Collaborator

@wpt-pr-bot wpt-pr-bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Already reviewed downstream.

@foolip foolip mentioned this pull request Dec 20, 2018
Closed
@gsnedders gsnedders closed this Jan 24, 2020
@gsnedders gsnedders deleted the chromium-export-cl-558917 branch January 24, 2020 18:05
@gsnedders gsnedders restored the chromium-export-cl-558917 branch January 24, 2020 18:49
@Hexcles Hexcles reopened this Jan 24, 2020
@KyleJu KyleJu closed this Apr 10, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@wpt-pr-bot wpt-pr-bot wpt-pr-bot approved these changes

Assignees
No one assigned
Labels
chromium-export content-security-policy do not merge yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
6 participants
@chromium-wpt-export-bot @wpt-pr-bot @gsnedders @Hexcles @KyleJu @andypaicu