Bug 842657 - Flip the pref to enable the CSP 1.0 parser for Firefox (r=jst)
authorIan Melven <imelven@mozilla.com>
Thu, 16 May 2013 08:06:43 -0700
changeset 139310 6b181afc9fadbd4bb9d04648aa24a34bd9731e82
parent 139309 9eb574cd8faf9fda76094811db2efffebbcdbeb3
child 139311 c2e9ea39d1047a406ce921a440172f6e3740b3a2
push id3911
push userakeybl@mozilla.com
push dateMon, 24 Jun 2013 20:17:26 +0000
treeherdermozilla-aurora@7e26ca8db92b [default view] [failures only]
perfherder[talos] [build metrics] [platform microbench] (compared to previous push)
reviewersjst
bugs842657
milestone24.0a1
Bug 842657 - Flip the pref to enable the CSP 1.0 parser for Firefox (r=jst)
browser/app/profile/firefox.js
--- a/browser/app/profile/firefox.js
+++ b/browser/app/profile/firefox.js
@@ -1225,16 +1225,19 @@ pref("social.directories", "https://addo
 pref("social.remote-install.enabled", true);
 
 pref("social.sidebar.open", true);
 pref("social.sidebar.unload_timeout_ms", 10000);
 pref("social.toast-notifications.enabled", true);
 
 pref("dom.identity.enabled", false);
 
+// Turn on the CSP 1.0 parser for Content Security Policy headers
+pref("security.csp.speccompliant", true);
+
 // Block insecure active content on https pages
 pref("security.mixed_content.block_active_content", true);
 
 
 // Override the Gecko-default value of false for Firefox.
 pref("plain_text.wrap_long_lines", true);
 
 #ifndef RELEASE_BUILD