gorhill
commented
10 years ago It is already like this. Once the scope is created, you can set whatever rules in it and this won't affect the global scope, or other scopes.
Open kcschan opened 10 years ago
gorhill
commented
10 years ago It is already like this. Once the scope is created, you can set whatever rules in it and this won't affect the global scope, or other scopes.
gorhill
commented
10 years ago By the way, you may want to move to uMatrix already, HTTPSB is not going to be maintained much anymore, as I will be spending most of my coding time on HTTPSB's successor, uMatrix.
The scope management is much more sane in uMatrix, since it was built from the ground up with scope in mind, while in HTTPSB scoping was slapped on afterward, leading to a lot of cringing side-effects of having sandboxed scopes.
kcschan
commented
10 years ago Thank you for the reply and these GREAT product!
It seems my knowledge of HTTPSB is outdated xD
I am planning to switch to uMatrix as soon as you publish it to the official webstore.
Currently every scope shares the same default configuration:
However sometimes we might need to allow "other" field(or other fields---cookie/css/img/plugin/XHR/scripts/frame) by default in the specified "_.A.com" domain scope, while keep it declined in _other* scope.
This feature described is especially useful for some video sites(let's say youku.com), where video stream CDN servers are called directly by their IP address, which is of enourmeous quantity:
Something like
youku.com--- main domainykimg.com--- domain used for static image resource123.132.123.132(an IP adress)--- a specific CDN address for the current video stream