Disable subresource redirect when restricted via CSP, CORS
This CL disables image redirect when content-security-policy disallows loading image from other origins, to adhere to CSP restrictions. This CL also disallows image redirect when crossorigin attribute is specified. Bug: 1098985 Change-Id: Ib6a25a31d716b6d0f318afd4e503482cede2148c Reviewed-on: https://chromium-review.googlesource.com/c/chromium/src/+/2264588Reviewed-by:Kinuko Yasuda <kinuko@chromium.org> Reviewed-by:
Michael Crouse <mcrouse@chromium.org> Commit-Queue: rajendrant <rajendrant@chromium.org> Cr-Commit-Position: refs/heads/master@{#791272}
Showing
Please register or sign in to comment