Public

Project privacy set to public. By default, its content is available to everyone (authenticated or not). Please note that more restrictive permissions might exist on some items.

stable

Clone or download

Read-only

Transform the existing lax Content-Security-Policy set on HTML pages to a deny-all default

Download Browse

The policy is still lax but block everything by default instead on being in allow-all mode by default. This will allow future contributions to move to a stricter policy. No expected functional changes. Part of request #17967: Deploy a useful content security policy Change-Id: I9f6fdf45ca9615499e0a2a4a3db5b98be5f5feed

+8 −1
Thomas Gerbet (tgerbet) 2020-11-18 08:45
Thomas Gerbet (tgerbet) 2020-11-18 08:45
9b050436cc39a9b8c68b20ac1761ec8065beb086
7e77e4331fba23ee3525f9750cd2282a1f153916
git #tuleap/stable/9b050436cc39a9b8c68b20ac1761ec8065beb086

Modified Files

Side by side diff
Inline diff
Name
M src/www/include/pre.php +8 −1 Go to diff View file