Sandbox enumeration
Sandbox enumeration
A sandboxing flag set is a set of zero or more of the following flags, which are used to restrict the abilities that potentially untrusted resources.
The Sandbox type exposes the following members:
Fields
Field | Description |
---|---|
NONE | No flag is set, every sandbox feature is accepted |
NAVIGATION | This flag prevents content from navigating browsing contexts other than the sandboxed browsing context itself (or browsing contexts further nested inside it), auxiliary browsing contexts (which are protected by the sandboxed auxiliary navigation browsing context flag defined next), and the top-level browsing context (which is protected by the sandboxed top-level navigation browsing context flag defined below). If the sandboxed auxiliary navigation browsing context flag is not set, then in certain cases the restrictions nonetheless allow popups (new top-level browsing contexts) to be opened. These browsing contexts always have one permitted sandboxed navigator, set when the browsing context is created, which allows the browsing context that created them to actually navigate them. (Otherwise, the sandboxed navigation browsing context flag would prevent them from being navigated even if they were opened. |
AUXILIARY_NAVIGATION | This flag prevents content from creating new auxiliary browsing contexts, e.g. using the target attribute, or the window.open() method. |
TOP_LEVEL_NAVIGATION | This flag prevents content from navigating their top-level browsing context and prevents content from closing their top-level browsing context. When the sandboxed top-level navigation browsing context flag is not set, content can navigate its top-level browsing context, but other browsing contexts are still protected by the sandboxed navigation browsing context flag and possibly the sandboxed auxiliary navigation browsing context flag. |
PLUGINS | This flag prevents content from instantiating plugins, whether using the embed element, the object element, the applet element, or through navigation of a nested browsing context, unless those plugins can be secured. |
ORIGIN | This flag forces content into a unique origin, thus preventing it from accessing other content from the same origin. |
FORMS | This flag blocks form submission. |
POINTER_LOCK | This flag disables the Pointer Lock API. |
SCRIPTS | This flag blocks script execution. |
AUTOMATIC_FEATURES | This flag blocks features that trigger automatically, such as automatically playing a video or automatically focusing a form control. |
FULLSCREEN | This flag prevents content from using the requestFullscreen() method. |
DOCUMENT_DOMAIN | This flag prevents content from using the document.domain feature to change the effective script origin. |
IMAGES | This flag disables image loading. |
See Also
- module
aspose.html