Problem/Motivation

A CSP policy may have additional non-network sources (e.g. data:), but these don't appear to be applicable to Permissions-Policy, so the corresponding policy optimization can be simplified.

Steps to reproduce

Proposed resolution

Update PermissionsPolicy::reduceSourceList() to only output directive=* if the directive contains a wildcard source.

Remaining tasks

API changes

Permissions Policy directives will no longer output non-network sources along with an "any" wildcard source.

Comments

gapple created an issue. See original summary.

  • gapple committed 0def9d4 on 1.0.x 
    Issue #3216477: Reduce allowlist if it includes wildcard
gapple’s picture

gapple
he/they
Primary language English
commented
Issue summary: View changes
Status: Active » Fixed

Status: Fixed » Closed (fixed)

Automatically closed - issue fixed for 2 weeks with no activity.