sascha
/
nextcloud-server
mirror of https://github.com/nextcloud/server.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
nextcloud-server/lib/private/Security/CSP
History
Ferdinand Thiessen 7df9eb3351 feat(ContentSecurityPolicy): Allow to set `strict-dynamic` on `script-src-elem` only 
This adds the possibility to set `strict-dynamic` on `script-src-elem` only while keep the default rules for `script-src`.
The idea is to allow loading module js which imports other files and thus does not allow nonces on import but on the initial script tag.

Signed-off-by: Ferdinand Thiessen <opensource@fthiessen.de>
 		2023-11-17 11:12:57 +07:00
..
ContentSecurityPolicy.php feat(ContentSecurityPolicy): Allow to set `strict-dynamic` on `script-src-elem` only 2023-11-17 11:12:57 +07:00
ContentSecurityPolicyManager.php Refactors lib/private/Security. 2023-09-27 09:03:15 +07:00
ContentSecurityPolicyNonceManager.php Refactors lib/private/Security. 2023-09-27 09:03:15 +07:00