sascha
/
nextcloud-server
mirror of https://github.com/nextcloud/server.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
nextcloud-server/lib/private/AppFramework/Middleware/Security
History
Holger Hees 73397cd759
fix: Use `CSP_NONCE` env variable in ContentSecurity Header 
We should use 'cspNonceManager' for requesting the NONCE value, because it is doing the same as before, except that it honors a CPS_NONCE environment variable if available.

Signed-off-by: Holger Hees <holger.hees@gmail.com>
 		2024-08-13 09:52:08 +07:00
..
Exceptions feat(security): restrict admin actions to IP ranges 2024-07-19 16:28:03 +07:00
BruteForceMiddleware.php chore: Add SPDX header 2024-05-24 13:11:22 +07:00
CORSMiddleware.php feat(Security): Warn about using annotations instead of attributes 2024-07-18 11:25:32 +07:00
CSPMiddleware.php fix: Use `CSP_NONCE` env variable in ContentSecurity Header 2024-08-13 09:52:08 +07:00
FeaturePolicyMiddleware.php chore: Add SPDX header 2024-05-24 13:11:22 +07:00
PasswordConfirmationMiddleware.php feat(Security): Warn about using annotations instead of attributes 2024-07-18 11:25:32 +07:00
RateLimitingMiddleware.php chore: use "app_api" session key, "app_api_system" is deprecated 2024-07-18 17:16:57 +07:00
ReloadExecutionMiddleware.php chore: Add SPDX header 2024-05-24 13:11:22 +07:00
SameSiteCookieMiddleware.php chore: Add SPDX header 2024-05-24 13:11:22 +07:00
SecurityMiddleware.php feat(security): Add public API to allow validating IP Ranges and checking for "in range" 2024-07-19 16:28:03 +07:00