New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Correctly handle iframe permission policy (`allow` attribute) #575

Open

sidvishnoi opened this issue Sep 6, 2024 · 0 comments

Labels

area: content bug good first issue hacktoberfest

Milestone

Member

sidvishnoi commented Sep 6, 2024

Presently only checks if allow === "monetization", which breaks if other directives are present.
Should also handle monetization directive's allowlist correctly, specially the "<origin>" type.

Spec: https://webmonetization.org/specification/#permissions-policy
MDN: https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Permissions-Policy#iframes

The text was updated successfully, but these errors were encountered:

sidvishnoi added the bug label

github-project-automation bot added this to Web Monetization Extension

github-project-automation bot moved this to Backlog in Web Monetization Extension

sidvishnoi added the good first issue label

raducristianpopa added the hacktoberfest label

sidvishnoi added the area: content label

RabebOthmani added this to the V0.5 milestone

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment