You are viewing a plain text version of this content. The canonical link for it is here.
Posted to commits@couchdb.apache.org by Apache Wiki <wi...@apache.org> on 2010/07/09 00:08:02 UTC
[Couchdb Wiki] Update of "CouchCamp2010" by jchrisa
Dear Wiki user,
You have subscribed to a wiki page or wiki category on "Couchdb Wiki" for change notification.
The "CouchCamp2010" page has been changed by jchrisa.
The comment on this change is: added a web security talk.
http://wiki.apache.org/couchdb/CouchCamp2010?action=diff&rev1=1&rev2=2
--------------------------------------------------
IndexedDatabase and IDBCouch.
WebStorage.
+ === CouchDB and the web security model ===
+
+ What do we need to do to allow CouchApps to play in the web sandbox. Eg if I'm running a banking CouchApp and a chat CouchApp, and the chat CouchApp has a bug that allows the person you are chatting with to inject HTML/JS into your browser, how do we keep that from being a vector for attack on your banking data?
+