upstream/nextcloud
1
0
Fork 0
mirror of https://github.com/nextcloud/server.git synced 2026-02-03 20:41:22 -05:00
Code Issues Projects Releases Packages Wiki Activity Actions 24
nextcloud/lib/private/Security/CSP
History
Ferdinand Thiessen 7df9eb3351 feat(ContentSecurityPolicy): Allow to set strict-dynamic on script-src-elem only 
This adds the possibility to set `strict-dynamic` on `script-src-elem` only while keep the default rules for `script-src`.
The idea is to allow loading module js which imports other files and thus does not allow nonces on import but on the initial script tag.

Signed-off-by: Ferdinand Thiessen <opensource@fthiessen.de>
2023-11-17 11:12:57 +01:00
..
ContentSecurityPolicy.php feat(ContentSecurityPolicy): Allow to set strict-dynamic on script-src-elem only 2023-11-17 11:12:57 +01:00
ContentSecurityPolicyManager.php Refactors lib/private/Security. 2023-09-27 09:03:15 +03:30
ContentSecurityPolicyNonceManager.php Refactors lib/private/Security. 2023-09-27 09:03:15 +03:30