Ryan VanderMeulen
|
b83ba6b825
|
Backed out 4 changesets (bug 671389) for frequent B2G debug test_tcpsocket_client_and_server_basics.html crashes.
Backed out changeset b782435e5640 (bug 671389)
Backed out changeset 0f8d62109bfe (bug 671389)
Backed out changeset 8d6021f66c49 (bug 671389)
Backed out changeset cd3e227df9dc (bug 671389)
|
2015-02-05 16:48:18 -05:00 |
Deian Stefan
|
53375db2ef
|
Bug 671389 - Part 1: Implement CSP sandbox directive r=ckerschb,smaug
|
2015-02-03 23:40:00 +01:00 |
Christoph Kerschbaumer
|
209afa562a
|
Bug 1121824 - Follow up on incorrect line ending in CORS console messages (r=sicking)
|
2015-02-02 13:35:10 -08:00 |
Christoph Kerschbaumer
|
2febb6d0f8
|
Bug 1121824 - Improve CORS console messages when request is blocked (r=sicking)
|
2015-01-22 17:20:58 -08:00 |
Carsten "Tomcat" Book
|
e8bc4eda67
|
Backed out changeset 0287d2e29d56 (bug 1121824) for m-1 test failures on a CLOSED TREE
|
2015-01-22 08:29:13 +01:00 |
Christoph Kerschbaumer
|
ed011bcd95
|
Bug 1121824 - Improve CORS console messages when request is blocked (r=sicking)
|
2015-01-21 19:44:43 -08:00 |
Masatoshi Kimura
|
28adad3ff7
|
Bug 1115668 - Fix inappropriate mixed content warning messages. r=tanvi
|
2014-12-30 23:09:33 +09:00 |
Carsten "Tomcat" Book
|
fb9f41c121
|
Backed out changeset 470c550c782b (bug 1115668) for breaking dt tests on a CLOSED TREE
|
2014-12-30 08:09:15 +01:00 |
Masatoshi Kimura
|
a1bc5e76d9
|
Bug 1115668 - Fix inappropriate mixed content warning messages. r=tanvi
|
2014-12-30 14:37:15 +09:00 |
Masatoshi Kimura
|
ab4b12e208
|
Bug 1092835 - Log usage of weak ciphers in the console. r=keeler,mcmanus
|
2014-12-13 20:09:01 +09:00 |
Ryan VanderMeulen
|
1bdab6fe7b
|
Backed out changesets fb903f13f215, 9c5c712698e4, and 36d257ead3da (bug 1092835) for causing test_csp_allow_https_schemes.html permafail on Android 2.3.
CLOSED TREE
|
2014-12-09 14:00:47 -05:00 |
Masatoshi Kimura
|
487b1516b0
|
Bug 1092835 - Log usage of weak ciphers in the console. r=keeler,mcmanus
|
2014-12-10 00:54:06 +09:00 |
Mark Goodwin
|
c71dc52d87
|
Bug 1068949 - Send SHA-1 deprecation warnings in to the web console. r=mcmanus
|
2014-11-04 13:25:00 -05:00 |
Christoph Kerschbaumer
|
f79507ab2f
|
Bug 1000945 - CSP: Remove unused strings from csp.properties (r=sstamm)
|
2014-08-13 21:40:36 -07:00 |
Camilo Viecco
|
c2c7007b5f
|
Bug 787133 - (hpkp) Part 1/2. Header Parsing and interface within PSM. r=keeler, r=mcmanus
|
2014-09-03 10:24:12 -07:00 |
Francois Marier
|
12e6ff4e4a
|
Bug 752559 - Console warning when sandboxed iframe is used ineffectively. r=smaug
|
2014-09-07 23:05:00 -04:00 |
Christoph Kerschbaumer
|
ce11d17474
|
Bug 1053028 - Remove remaining relicts of deprecated X-CSP header (r=sstamm)
|
2014-08-12 21:15:56 -07:00 |
Christoph Kerschbaumer
|
3865ff6dd5
|
Bug 1045902: CSP - log warning and ignore 'reflected-xss' directive (r=grobinson)
--HG--
extra : rebase_source : 9625060894079debd9cee8bc50bdc3b3be1ee18f
|
2014-07-31 22:24:07 -07:00 |
Frederik Braun
|
28f37fc420
|
Bug 1010953 - different message for CSP-Report Only to devtools console. r=grobinson
|
2014-05-20 12:15:43 +02:00 |
Yeuk Hon Wong
|
47d8c2e9eb
|
Bug 847081 - Throw a warning when a '*-report-only' header doesn't contain a 'report-uri' directive. r=geekboy
|
2014-02-13 10:10:29 -05:00 |
Garrett Robinson
|
a0a4fc132b
|
Bug 963901 - Fix variable format error. r=sstamm
|
2014-01-31 21:54:48 -05:00 |
Sid Stamm
|
842e0bd445
|
Bug 843311 - update CSP report-uri parsing to be spec compliant. r=grobinson
|
2014-01-24 10:24:08 -08:00 |
Yeuk Hon Wong
|
a17e4fc360
|
Bug 587377 - Display CSP warning in the web console if a hostname is a quoteless CSP keyword match. r=sstamm
|
2014-01-17 11:10:29 -05:00 |
Garrett Robinson
|
e0d2da8ca6
|
Bug 713980 - Log warnings about blocked cross-site requests to the Web Console. r=smaug
|
2014-01-07 09:51:05 -05:00 |
Frederik Braun
|
57904a2436
|
Bug 607067 - Improve CSP violation messages for base restrictions and fix affected testcases. r=imelven, r=sstamm
|
2013-08-12 12:34:40 +02:00 |
Ivan Alagenchev
|
f8985f80ad
|
Bug 875456 - DOM patch. Modifies Mixed Content Blocker, so that its messages are appropriately logged to the security console. r=bz
|
2013-08-26 11:27:00 -04:00 |
Ivan Alagenchev
|
fdd548e83d
|
Bug 762593 - DOM patch. Adds localized strings for insecure passwords error messages. r=bz
|
2013-08-06 10:15:00 -04:00 |
Ivan Alagenchev
|
c822b1becc
|
Bug 846918: localization for invalid sts. r=dolske.
|
2013-07-26 08:37:03 -07:00 |
Garrett Robinson
|
d454789d46
|
Bug 865344 - Add a localization comment for BlockMixedDisplayContent and BlockMixedActiveContent. r=smaug
|
2013-04-26 10:10:59 -04:00 |
Garrett Robinson
|
c5f9d17d6a
|
Bug 863878 - The CSP logging from bug 821877 should go to the new Security Pane in the Web Console. r=bzbarsky r=ddahl
|
2013-04-23 17:39:10 -05:00 |
Garrett Robinson
|
73cfb40552
|
Bug 837351 - Log blocked mixed content to the Error and Web Consoles. r=smaug
|
2013-04-22 18:08:18 -07:00 |
Sid Stamm
|
1fadf0fd61
|
Bug 832398 - change default-source to default-src in CSP error messages. r=l10n
--HG--
extra : rebase_source : 019f24639e72481cd31c1f935dd657d42c99dd26
|
2013-03-28 10:05:51 -07:00 |
Cykesiopka
|
fb67c74d31
|
Bug 751378 - Remove unused CAPS strings from stringbundle. r=bz
|
2013-03-12 15:55:50 -04:00 |
Lucas Adamski
|
97fc8f26e1
|
Bug 634778 - Warn and skip when duplicate CSP directives are detected. (r=geekboy)
|
2012-09-19 13:41:38 -07:00 |
Mark Goodwin
|
3d072ad561
|
Bug 770176 - fix one-char typo in CSP error string. (r=l10n)
--HG--
extra : rebase_source : f804a0e80252624ffca3988e56f5c0d7bd96ba7b
|
2012-09-12 13:30:25 -07:00 |
Mark Goodwin
|
e2b1cff4af
|
Bug 766569 - add l10n support to existing CSP errors and warnings. (r=bz)
|
2012-06-29 12:51:24 -07:00 |
Gervase Markham
|
82ff7027aa
|
Bug 716478 - update licence to MPL 2.
|
2012-05-21 12:12:37 +01:00 |
Bobby Holley
|
f56195c7a3
|
Bug 713747 - Remove UniversalFoo from caps (and thus, the tree). r=bz
|
2011-12-30 09:35:52 -08:00 |
Dan Witte
|
7c610ca8ac
|
Bug 564048 - Nix security checks in nsPrefBranch. r=sicking, sr=jst
|
2010-06-08 16:43:54 -07:00 |
Boris Zbarsky
|
31700392b3
|
Followup for bug 495176. Fix the localization notes.
|
2009-07-31 00:05:57 -04:00 |
Boris Zbarsky
|
ba4bfdba03
|
Bug 495176. Improve security error reporting when document.domain is involved. r=jst,pike sr=jst
|
2009-07-26 21:27:33 -04:00 |
Boris Zbarsky
|
79debaf781
|
Backed out changeset b55e7e3c0bfb to see whether bug 495176 might be causing the WinXP Txul regression
--HG--
extra : rebase_source : c854c6a8afad67c583ff08e23bbac27cbf99c0cd
|
2009-07-28 14:34:01 -04:00 |
Boris Zbarsky
|
57fdf8c806
|
Bug 495176. Improve security error reporting when document.domain is involved. r=jst,pike sr=jst
|
2009-07-26 21:27:33 -04:00 |
Boris Zbarsky
|
c941674d4d
|
Bug 434522. Make the "Permission denied to access Class.property" mesage more useful. r+sr=jst
|
2008-07-28 23:03:19 -07:00 |
reed@reedloden.com
|
9da86a455b
|
Bug 395590 - "Entity ProtocolFlagError should be rephrased" [p=hendrik.maryns@uni-tuebingen.de (Hendrik Maryns) r+sr=bzbarsky a1.9=damons]
|
2007-11-12 22:49:11 -08:00 |
bzbarsky%mit.edu
|
0a3a624149
|
Make it possible for protocol handlers to configure how CheckLoadURI should
treat them via their protocol flags. Remove the protocol list we used before.
Bug 120373, r=dveditz, sr=darin
|
2006-11-10 23:49:08 +00:00 |
gandalf%firefox.pl
|
06f479dff9
|
bug 279768: Bring build system to work with --enable-ui-locale; r=bsmedberg; a=doron on webservices move
|
2005-03-08 17:21:36 +00:00 |