Confirmed users
717
edits
Features/Platform/Iframe Sandbox: Difference between revisions
Jump to navigation
Jump to search
Features/Platform/Iframe Sandbox (view source)
Revision as of 23:38, 1 February 2012
, 1 February 2012no edit summary
No edit summary |
No edit summary |
||
| Line 21: | Line 21: | ||
* whether to implement @sandbox on <xul:iframe/browser/editor> - this needs discussion still | * whether to implement @sandbox on <xul:iframe/browser/editor> - this needs discussion still | ||
* what to do with Workers in a sandboxed frame - would probably need allow-scripts for these, and maybe allow-same-domain ? or just block them altogether, as apparently some other browsers have done | * what to do with Workers in a sandboxed frame - would probably need allow-scripts for these, and maybe allow-same-domain ? or just block them altogether, as apparently some other browsers have done | ||
|Feature overview=The HTML5 standard specifies a new attribute for the IFRAME element, "sandbox". See also [https://bugzilla.mozilla.org/show_bug.cgi?id=341604 bug 341604] "Implement HTML5 sandbox attribute for IFRAMEs" and [https://bugzilla.mozilla.org/show_bug.cgi?id=671389 bug 671389] "Implement CSP sandbox directive" | |Feature overview=The HTML5 standard specifies a new attribute for the IFRAME element, "sandbox". See also [https://bugzilla.mozilla.org/show_bug.cgi?id=341604 bug 341604] "Implement HTML5 sandbox attribute for IFRAMEs" and [https://bugzilla.mozilla.org/show_bug.cgi?id=671389 bug 671389] "Implement CSP sandbox directive" | ||
|Feature users and use cases=Users are web developers looking for a way to isolate content on their site and preventing it from having its default same origin privileges. The HTML5 spec specifies some modifying attributes that can re-grant permissions such as executing scripts and submitting forms, etc. | |Feature users and use cases=Users are web developers looking for a way to isolate content on their site and preventing it from having its default same origin privileges. The HTML5 spec specifies some modifying attributes that can re-grant permissions such as executing scripts and submitting forms, etc. | ||
| Line 64: | Line 63: | ||
}} | }} | ||
{{FeatureInfo | {{FeatureInfo | ||
|Feature priority= | |Feature priority=P1 | ||
|Feature theme=Security, Privacy | |Feature theme=Security, Privacy | ||
|Feature roadmap=Security | |Feature roadmap=Security | ||