Google Git
Sign in
gerrit / gerrit / 577257935975f38899a26021e328c8c48c3a7c00
commit577257935975f38899a26021e328c8c48c3a7c00[log] [tgz]
authorShawn O. Pearce <sop@google.com>Tue Mar 10 18:14:09 2009 -0700
committerShawn O. Pearce <sop@google.com>Tue Mar 10 18:14:09 2009 -0700
tree538c7e7ae5a4872e7130958c40b6c2e22f97b3f7
parentdd95666c3b4ce4d2081a5e045ada4b23ff9ebb54 [diff]
Never place an OpenID provider into an iframe

It prevents the user from validating the security and identity of
their OpenID provider, making it easier for a phishing site to get
the user's identity information.

Bug: GERRIT-102
Signed-off-by: Shawn O. Pearce <sop@google.com>
4 files changed
tree: 538c7e7ae5a4872e7130958c40b6c2e22f97b3f7
  1. .settings/
  2. Documentation/
  3. gerrit1_import/
  4. src/
  5. .gitignore
  6. COPYING
  7. gerrit_debug.launch
  8. gerrit_macos.launch
  9. INSTALL
  10. pom.xml
  11. to_jetty.sh