corysanin/tubestation
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
0f921b51a93c8111b46568616090396cc21948eb
tubestation/testing/web-platform/tests/idle-detection/idle-detection-allowed-by-feature-policy.https.sub.html.headers
Ayu Ishii 92dd0e7904 Bug 1534569 [wpt PR 15731] - [idle] Restrict the Idle Detection API to top-level frames, a=testonly 
Automatic update from web-platform-tests
[idle] Restrict the Idle Detection API to top-level frames

Allow only top-level frames to use the idle-detection feature by setting
a default Feature Policy of "self" to allow only same-origin iframes.
This check is in place to prevent third party scripts running on the
page (eg. ads) from listening to a user's idle-ness.

Bug: 936659
Change-Id: I0c83c29ec95cad25e9c35c339e46c79937654889
Reviewed-on: https://chromium-review.googlesource.com/c/chromium/src/+/1506815
Commit-Queue: Ayu Ishii <ayui@chromium.org>
Reviewed-by: Luna Lu <loonybear@chromium.org>
Reviewed-by: Dominick Ng <dominickn@chromium.org>
Reviewed-by: Reilly Grant <reillyg@chromium.org>
Cr-Commit-Position: refs/heads/master@{#640061}

--

wpt-commits: 8a63b783181f691ec5c9bb0f52ab0e24003c1f5b
wpt-pr: 15731
2019-04-01 14:43:27 +01:00

2 lines
33 B
Plaintext
Raw Blame History

Feature-Policy: idle-detection *
Reference in New Issue View Git Blame Copy Permalink