Public bug reported:
Firefox should support the HTML 5 sandbox attribute on <iframe>s:
sandbox HTML5 only
If specified as an empty string, this attribute enables extra restrictions
on the content that can appear in the inline frame. The value of the attribute
can be a space-separated list of tokens that lift particular restrictions.
Valid tokens are:
allow-same-origin: Allows the content to be treated as being from the
same origin as the containing document. If this keyword is not used, the
embedded content is treated as being from a unique origin.
allow-top-navigation: Allows the embedded browsing context to navigate
(load) content from the top-level browsing context. If this keyword is not
used, this operation is not allowed.
allow-forms: Allows the embedded browsing context to submit forms. If
this keyword is not used, this operation is not allowed.
allow-scripts: Allows the embedded browsing context to run scripts (but
not create pop-up windows). If this keyword is not used, this operation is not
allowed.
** Affects: firefox
Importance: Unknown
Status: Unknown
** Affects: firefox (Ubuntu)
Importance: Undecided
Status: New
** Bug watch added: Mozilla Bugzilla #341604
https://bugzilla.mozilla.org/show_bug.cgi?id=341604
** Also affects: firefox via
https://bugzilla.mozilla.org/show_bug.cgi?id=341604
Importance: Unknown
Status: Unknown
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1022741
Title:
Implement HTML5 sandbox attribute for IFRAMEs
To manage notifications about this bug go to:
https://bugs.launchpad.net/firefox/+bug/1022741/+subscriptions
--
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
