CSP & CORS
CSP & CORS
内容安全策略
跨域资源共享
CSP
https://developers.google.com/web/fundamentals/security/csp
google fundamentals cors
https://developers.google.com/s/results/?q=cors
demo
view-source:https://login.teamviewer.com/LogOn
https://login.teamviewer.com/logon/config.js
https://login.teamviewer.com/LogOn
refs
Content Security Policy Level 3
W3C Working Draft, 15 October 2018
https://fetch.spec.whatwg.org/#http-cors-protocol
XSS (跨站脚本攻击) 的原理分析,测试, 应对措施
https://www.cnblogs.com/xgqfrms/p/5836723.html
©xgqfrms 2012-2020
www.cnblogs.com 发布文章使用:只允许注册用户才可以访问!
本文首发于博客园,作者:xgqfrms,原文链接:https://www.cnblogs.com/xgqfrms/p/9520721.html
未经授权禁止转载,违者必究!