Public

Project privacy set to public. By default, its content is available to everyone (authenticated or not). Please note that more restrictive permissions might exist on some items.

stable

Clone or download

Read-only

Ask for a sample when reporting a content security policy violation

Download Browse

Recent versions of the Content-Security-Policy [0] supports sending a substring of the source at the origin of the issue. This is helpful to analyze a reports and determine the cause of the issue. Part of request #17967: Deploy a useful content security policy [0] https://w3c.github.io/webappsec-csp/#grammardef-report-sample Change-Id: I44c8e4f16d6a8e08e35b5dea3ebf7b31e8bb46b4

+6 −6
Thomas Gerbet (tgerbet) 2021-01-18 22:41
Thomas Gerbet (tgerbet) 2021-01-18 22:41
71da00ba97d8d658429c6df39a7e69267b5cdd17
b8e4681b2086345cd6dd7abe17fb143dcc38e25a
git #tuleap/stable/71da00ba97d8d658429c6df39a7e69267b5cdd17

Modified Files

Side by side diff
Inline diff
Name
M plugins/oauth2_server/include/AuthorizationServer/AuthorizationEndpointController.php +1 −1 Go to diff View file
M src/etc/nginx/tuleap-managed-global-settings.conf +1 −1 Go to diff View file
M src/etc/nginx/tuleap.d/07-mailman.conf +1 −1 Go to diff View file
M src/www/include/pre.php +3 −3 Go to diff View file