nextcloud

Commit Graph

Author	SHA1	Message	Date
Roeland Jago Douma	cd243b0876	No need to have these classes we tighten the default CSP from time to time Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>	2019-07-27 14:59:48 +02:00
Roeland Jago Douma	c21cee248c	Disallow eval on the StrictEvalCSP Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>	2018-07-11 21:12:36 +02:00
Roeland Jago Douma	b38fa573e1	Add stricter CSPs * Deprecate our default CSP * Add strict CSP that is always our strictest setting * Add strict eval CSP (disable unsafe-eval) * Add strict inline CSP (disables inline styles) This is just to move forward and have a incremental improvement of our CSP Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>	2018-06-13 14:47:57 +02:00

Author

SHA1

Message

Date

Roeland Jago Douma

cd243b0876

No need to have these classes we tighten the default CSP from time to

time

Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>

2019-07-27 14:59:48 +02:00

Roeland Jago Douma

c21cee248c

Disallow eval on the StrictEvalCSP

Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>

2018-07-11 21:12:36 +02:00

Roeland Jago Douma

b38fa573e1

Add stricter CSPs

* Deprecate our default CSP
* Add strict CSP that is always our strictest setting
* Add strict eval CSP (disable unsafe-eval)
* Add strict inline CSP (disables inline styles)

This is just to move forward and have a incremental improvement of our
CSP

Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>

2018-06-13 14:47:57 +02:00

3 Commits