当前位置:网站首页>关于 Web Content-Security-Policy Directive 通过 meta 元素指定的一些测试用例
关于 Web Content-Security-Policy Directive 通过 meta 元素指定的一些测试用例
2022-07-07 10:07:00 【InfoQ】
frame-src
测试1:3000 应用(即嵌入 3002 应用的 web 应用里)增加 frame-src
<html>
<head>
<meta http-equiv="Content-Security-Policy" content="frame-src 'self'">
</head>
<h1>Parent</h1>
<iframe src="http://localhost:3002/csp"></iframe>
</html>
测试2
<html>
<head>
<meta http-equiv="Content-Security-Policy" content="frame-src 'http://localhost:3002'">
</head>
<h1>Parent</h1>
<iframe src="http://localhost:3002/csp"></iframe>
</html>
*
<html>
<head>
<meta http-equiv="Content-Security-Policy" content="frame-src http://localhost:3002/csp">
</head>
<h1>Parent</h1>
<iframe src="http://localhost:3002/csp"></iframe>
</html>
<html>
<head>
<meta http-equiv="Content-Security-Policy" content="frame-src http://localhost:*/csp">
</head>
<h1>Parent</h1>
<iframe src="http://localhost:3002/csp"></iframe>
</html>
边栏推荐
- Poor math students who once dropped out of school won the fields award this year
- 【紋理特征提取】基於matlab局部二值模式LBP圖像紋理特征提取【含Matlab源碼 1931期】
- Various uses of vim are very practical. I learned and summarized them in my work
- Flet教程之 17 Card卡片组件 基础入门(教程含源码)
- Talk about SOC startup (x) kernel startup pilot knowledge
- SwiftUI 教程之如何在 2 秒内实现自动滚动功能
- Half of the people don't know the difference between for and foreach???
- UP Meta—Web3.0世界创新型元宇宙金融协议
- Zero shot, one shot and few shot
- MATLAB实现Huffman编码译码含GUI界面
猜你喜欢
Complete collection of common error handling in MySQL installation
SwiftUI Swift 内功之如何在 Swift 中进行自动三角函数计算
Rationaldmis2022 advanced programming macro program
![111.网络安全渗透测试—[权限提升篇9]—[Windows 2008 R2内核溢出提权]](/img/2e/da45198bb6fb73749809ba0c4c1fc5.png)
111.网络安全渗透测试—[权限提升篇9]—[Windows 2008 R2内核溢出提权]
![[filter tracking] strapdown inertial navigation pure inertial navigation solution matlab implementation](/img/14/6e440f3c4e04d9b322f0c3f43e213c.png)
[filter tracking] strapdown inertial navigation pure inertial navigation solution matlab implementation
相机标定(2): 单目相机标定总结
【最短路】Acwing1128信使:floyd最短路
18 basic introduction to divider separator component of fleet tutorial (tutorial includes source code)
Summed up 200 Classic machine learning interview questions (with reference answers)
Poor math students who once dropped out of school won the fields award this year
随机推荐
Flet教程之 19 VerticalDivider 分隔符组件 基础入门(教程含源码)
Various uses of vim are very practical. I learned and summarized them in my work
Fleet tutorial 19 introduction to verticaldivider separator component Foundation (tutorial includes source code)
Problem: the string and characters are typed successively, and the results conflict
The road to success in R & D efficiency of 1000 person Internet companies
请查收.NET MAUI 的最新学习资源
总结了200道经典的机器学习面试题(附参考答案)
【神经网络】卷积神经网络CNN【含Matlab源码 1932期】
Suggestions on one-stop development of testing life
zero-shot, one-shot和few-shot
Talk about SOC startup (VII) uboot startup process III
[full stack plan - programming language C] basic introductory knowledge
Fleet tutorial 14 basic introduction to listtile (tutorial includes source code)
Mise en œuvre du codage Huffman et du décodage avec interface graphique par MATLAB
MATLAB實現Huffman編碼譯碼含GUI界面
[shortest circuit] acwing 1127 Sweet butter (heap optimized dijsktra or SPFA)
2022年在启牛开华泰的账户安全吗?
Sonar:Cognitive Complexity认知复杂度
Have you ever met flick Oracle CDC, read a table without update operation, and read it repeatedly every ten seconds
STM32F1与STM32CubeIDE编程实例-MAX7219驱动8位7段数码管(基于SPI)