Public

Project privacy set to public. By default, its content is available to everyone (authenticated or not). Please note that more restrictive permissions might exist on some items.

stable

Clone or download

Read-only

Report violation of the default Content-Security-Policy

Download Browse

This change was forgotten in f8d03b1090872f77ad18638766238091ec78eb6b. Violations report of the policy that is set by default (when no Content-Security-Policy header is found in the response) should also be collected. The Content-Security-Policy headers that were set by some specific endpoints to deny everything have been removed since denying everything is now the default behavior. Part of request #17967: Deploy a useful content security policy Change-Id: Iafd0010f0516e6be884197e1abbae3ed0b7b7059

+1 −5
Thomas Gerbet (tgerbet) 2020-11-20 13:31
Thomas Gerbet (tgerbet) 2020-11-20 13:35
09793d1cd9452cea36e95e8c378586ab7777ea89
4bbfbf5f4863cd9a1b1d327225f3c1af95e9ecc6
git #tuleap/stable/09793d1cd9452cea36e95e8c378586ab7777ea89

Modified Files

Side by side diff
Inline diff
Name
M plugins/gitlfs/include/Download/FileDownloaderController.php +0 −1 Go to diff View file
M plugins/gitlfs/include/Transfer/Basic/LFSBasicTransferDownloadController.php +0 −1 Go to diff View file
M plugins/textualreport/include/TextualReport/SinglePageExporter.php +0 −1 Go to diff View file
M src/common/Http/Response/BinaryFileResponseBuilder.php +0 −1 Go to diff View file
M src/etc/nginx/tuleap-managed-global-settings.conf +1 −1 Go to diff View file