Skip to content

Commit

Permalink
Remove navigate-to directive from Content Security Policy Cheat Sheet (
Browse files Browse the repository at this point in the history 
…#1447)
  • Loading branch information
@tbroyer
tbroyer authored Jul 9, 2024
1 parent 64f4e10 commit 9bc7f7c
Showing 1 changed file with 1 addition and 2 deletions.
3 changes: 1 addition & 2 deletions cheatsheets/Content_Security_Policy_Cheat_Sheet.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -235,9 +235,8 @@ Document directives instruct the browser about the properties of the document to

### Navigation Directives

Navigation directives instruct the browser about the locations that the document can navigate to.
Navigation directives instruct the browser about the locations that the document can navigate to or be embedded from.

- `navigate-to` restricts the URLs which a document can navigate to by any means ([not yet supported](https://caniuse.com/?search=navigate-to) by modern browsers in Jan 2021).
- `form-action` restricts the URLs which the forms can submit to.
- `frame-ancestors` restricts the URLs that can embed the requested resource inside of `<frame>`, `<iframe>`, `<object>`, `<embed>`, or `<applet>` elements.
- If this directive is specified in a `<meta>` tag, the directive is ignored.
Expand Down

0 comments on commit 9bc7f7c

Please sign in to comment.