[html5] r5756 - [giow] (1) Ensure that sandbox='allow-same-origin allow-top-navigation' doesn't [...]

whatwg at whatwg.org whatwg at whatwg.org
Mon Jan 10 14:34:04 PST 2011 

Author: ianh
Date: 2011-01-10 14:34:02 -0800 (Mon, 10 Jan 2011)
New Revision: 5756

Modified:
   complete.html
   index
   source
Log:
[giow] (1) Ensure that sandbox='allow-same-origin allow-top-navigation' doesn't allow sandboxed pages to run scripts 'by proxy' (through the top-level browsing context)
Fixing http://www.w3.org/Bugs/Public/show_bug.cgi?id=11429

Modified: complete.html
===================================================================
--- complete.html	2011-01-10 22:08:21 UTC (rev 5755)
+++ complete.html	2011-01-10 22:34:02 UTC (rev 5756)
@@ -64182,6 +64182,16 @@
     <p>Use the appropriate step from the following list:</p>
 
     <dl><dt>If a <a href=#browsing-context>browsing context</a> is being <a href=#navigate title=navigate>navigated</a> to a <code>javascript:</code>
+     URL, and the <a href=#source-browsing-context>source browsing context</a> for that
+     navigation, if any, has <a href=#concept-bc-noscript title=concept-bc-noscript>scripting disabled</a></dt>
+
+     <dd>
+
+      <p>Let <var title="">result</var> be void.</p>
+
+     </dd>
+
+     <dt>If a <a href=#browsing-context>browsing context</a> is being <a href=#navigate title=navigate>navigated</a> to a <code>javascript:</code>
      URL, and the <a href=#active-document>active document</a> of that browsing
      context has the <a href=#same-origin>same origin</a> as the script given by
      that URL</dt>

Modified: index
===================================================================
--- index	2011-01-10 22:08:21 UTC (rev 5755)
+++ index	2011-01-10 22:34:02 UTC (rev 5756)
@@ -64184,6 +64184,16 @@
     <p>Use the appropriate step from the following list:</p>
 
     <dl><dt>If a <a href=#browsing-context>browsing context</a> is being <a href=#navigate title=navigate>navigated</a> to a <code>javascript:</code>
+     URL, and the <a href=#source-browsing-context>source browsing context</a> for that
+     navigation, if any, has <a href=#concept-bc-noscript title=concept-bc-noscript>scripting disabled</a></dt>
+
+     <dd>
+
+      <p>Let <var title="">result</var> be void.</p>
+
+     </dd>
+
+     <dt>If a <a href=#browsing-context>browsing context</a> is being <a href=#navigate title=navigate>navigated</a> to a <code>javascript:</code>
      URL, and the <a href=#active-document>active document</a> of that browsing
      context has the <a href=#same-origin>same origin</a> as the script given by
      that URL</dt>

Modified: source
===================================================================
--- source	2011-01-10 22:08:21 UTC (rev 5755)
+++ source	2011-01-10 22:34:02 UTC (rev 5756)
@@ -73066,6 +73066,18 @@
 
      <dt>If a <span>browsing context</span> is being <span
      title="navigate">navigated</span> to a <code>javascript:</code>
+     URL, and the <span>source browsing context</span> for that
+     navigation, if any, has <span
+     title="concept-bc-noscript">scripting disabled</span></dt>
+
+     <dd>
+
+      <p>Let <var title="">result</var> be void.</p>
+
+     </dd>
+
+     <dt>If a <span>browsing context</span> is being <span
+     title="navigate">navigated</span> to a <code>javascript:</code>
      URL, and the <span>active document</span> of that browsing
      context has the <span>same origin</span> as the script given by
      that URL</dt>

More information about the Commit-Watchers mailing list