Skip to content

Commit dae533d

Browse files
yoavweissyoavweiss
authored
Integrity-Policy integration
See w3c/webappsec-subresource-integrity#133 for context.
1 parent a889ec3 commit dae533d

File tree

1 file changed

+9
-5
lines changed

1 file changed

+9
-5
lines changed

fetch.bs

Lines changed: 9 additions & 5 deletions
Original file line numberDiff line numberDiff line change
@@ -1762,8 +1762,7 @@ the empty string,
17621762
the time being as other specifications do not require it to be. It is primarily a specification
17631763
device to assist defining CSP and Mixed Content. It is not exposed to JavaScript. [[!CSP]] [[!MIX]]
17641764

1765-
<p>A <a for=/>request</a> has an associated
1766-
<dfn export for=request id=concept-request-destination>destination</dfn>, which is
1765+
<p>A <dfn export>destination type</dfn> is one of:
17671766
the empty string,
17681767
"<code>audio</code>",
17691768
"<code>audioworklet</code>",
@@ -1786,7 +1785,11 @@ the empty string,
17861785
"<code>video</code>",
17871786
"<code>webidentity</code>",
17881787
"<code>worker</code>", or
1789-
"<code>xslt</code>". Unless stated otherwise it is the empty string.
1788+
"<code>xslt</code>".
1789+
1790+
<p>A <a for=/>request</a> has an associated
1791+
<dfn export for=request id=concept-request-destination>destination</dfn>, which is
1792+
<a>destination type</a>. Unless stated otherwise it is the empty string.
17901793

17911794
<p class=note>These are reflected on {{RequestDestination}} except for "<code>serviceworker</code>"
17921795
and "<code>webidentity</code>" as fetches with those destinations skip service workers.
@@ -4533,8 +4536,9 @@ steps:
45334536
<li><p><a>Upgrade a mixed content <var>request</var> to a potentially trustworthy URL, if appropriate</a>.
45344537

45354538
<li><p>If <a lt="block bad port">should <var>request</var> be blocked due to a bad port</a>,
4536-
<a lt="should fetching request be blocked as mixed content?">should fetching <var>request</var> be blocked as mixed content</a>, or
4537-
<a lt="should request be blocked by Content Security Policy?">should <var>request</var> be blocked by Content Security Policy</a>
4539+
<a lt="should fetching request be blocked as mixed content?">should fetching <var>request</var> be blocked as mixed content</a>,
4540+
<a lt="should request be blocked by Content Security Policy?">should <var>request</var> be blocked by Content Security Policy</a>, or
4541+
<a lt="should request be blocked by Integrity Policy">should <var>request</var> be blocked by Integrity Policy Policy</a>
45384542
returns <b>blocked</b>, then set <var>response</var> to a <a>network error</a>.
45394543

45404544
<li><p>If <var>request</var>'s <a for=request>referrer policy</a> is the empty string, then set

0 commit comments

Comments
 (0)