Confirmed users
461
edits
SummerOfCode/2012/UserCSP/WeeklyUpdates/2012-08-13: Difference between revisions
SummerOfCode/2012/UserCSP/WeeklyUpdates/2012-08-13 (view source)
Revision as of 07:48, 19 August 2012
, 19 August 2012→Sunday, {{#time:d F|{{SUBPAGENAME}} +6 days}}
| Line 48: | Line 48: | ||
=== Sunday, {{#time:d F|{{SUBPAGENAME}} +6 days}} === | === Sunday, {{#time:d F|{{SUBPAGENAME}} +6 days}} === | ||
* "Help" tab is added to add-on UI and it say "If the website rules appear to be missing for a site that has implemented CSP, try clicking shift-refresh. It may be because the website is cached." | |||
** When a site is loaded from a cache and it has set "X-Content-Security-Policy header, then we don't know how to retrieve its "X-Content-Security-Policy" Header for the website when it is loaded from a cache. Therefore, in such scenario we are not able to display the CSP policy into add-on UI. Whereas shift-refresh causes a site to be loaded from network, so that we can retrieve CSP policy from HTTP header. | |||
* Added "setInferredCSPAsUserCSP" button into "Infer CSP" tab. This feature allows user to set automatically inferred policy for a website as well as allows user to update inferred CSP policy. | |||
* userCSP add-on is uploaded on GitHub (https://github.com/patilkr/userCSP) | |||
* Project report is uploaded at (https://wiki.mozilla.org/SummerOfCode/2012/UserCSP/Wiki) | |||