Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Labels derived from user-minted privileges are not parsed by CSP #3

Open
alejandrorusso opened this issue Jun 25, 2015 · 0 comments
Open
Assignees
Labels

Comments

@alejandrorusso
Copy link

User-minted privileges can be used to confine code to the browser by raising COWL.privacyLabel with the label derived from such privilege. At the moment, CSP is not parsing labels derived from user-minted privileges. More concretely,

var p = new FreshPrivilege(), 
COWL.privacyLabel = COWL.privacyLabel.and(p.asLabel) ; 

produces the error:

Content Security Policy: Failed to parse unrecognized source moz-nullprincipal:{c5ed1219-b1d0-450e-8d3d-c20ceb33ae96}
@deian deian self-assigned this Jun 25, 2015
@deian deian added the bug label Jun 25, 2015
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
Projects
None yet
Development

No branches or pull requests

2 participants