From c21cee248cc470a99aca4351cdf8b71a3bba470e Mon Sep 17 00:00:00 2001
From: Roeland Jago Douma <roeland@famdouma.nl>
Date: Wed, 11 Jul 2018 21:12:36 +0200
Subject: [PATCH] Disallow eval on the StrictEvalCSP

Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
---
 .../AppFramework/Http/StrictEvalContentSecurityPolicy.php       | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/lib/public/AppFramework/Http/StrictEvalContentSecurityPolicy.php b/lib/public/AppFramework/Http/StrictEvalContentSecurityPolicy.php
index c1d6093d88..b95d2c65e5 100644
--- a/lib/public/AppFramework/Http/StrictEvalContentSecurityPolicy.php
+++ b/lib/public/AppFramework/Http/StrictEvalContentSecurityPolicy.php
@@ -46,6 +46,6 @@ class StrictEvalContentSecurityPolicy extends ContentSecurityPolicy {
 	 * @since 14.0.0
 	 */
 	public function __construct() {
-		$this->inlineStyleAllowed = false;
+		$this->evalScriptAllowed = false;
 	}
 }