Remove unsafe authorization (#1184)
This commit is contained in:
parent
b85cedcc3e
commit
03339738b7
|
@ -31,7 +31,7 @@ sub defaultValues {
|
||||||
'cspFont' => '\'self\'',
|
'cspFont' => '\'self\'',
|
||||||
'cspImg' => '\'self\' data:',
|
'cspImg' => '\'self\' data:',
|
||||||
'cspScript' => '\'self\'',
|
'cspScript' => '\'self\'',
|
||||||
'cspStyle' => '\'self\' \'unsafe-inline\'',
|
'cspStyle' => '\'self\'',
|
||||||
'dbiAuthnLevel' => 2,
|
'dbiAuthnLevel' => 2,
|
||||||
'dbiExportedVars' => {},
|
'dbiExportedVars' => {},
|
||||||
'demoExportedVars' => {
|
'demoExportedVars' => {
|
||||||
|
|
|
@ -833,7 +833,7 @@ qr/(?:(?:https?):\/\/(?:(?:(?:(?:(?:(?:[a-zA-Z0-9][-a-zA-Z0-9]*)?[a-zA-Z0-9])[.]
|
||||||
'type' => 'text'
|
'type' => 'text'
|
||||||
},
|
},
|
||||||
'cspStyle' => {
|
'cspStyle' => {
|
||||||
'default' => '\'self\' \'unsafe-inline\'',
|
'default' => '\'self\'',
|
||||||
'type' => 'text'
|
'type' => 'text'
|
||||||
},
|
},
|
||||||
'customAddParams' => {
|
'customAddParams' => {
|
||||||
|
|
|
@ -477,7 +477,7 @@ sub attributes {
|
||||||
},
|
},
|
||||||
cspStyle => {
|
cspStyle => {
|
||||||
type => 'text',
|
type => 'text',
|
||||||
default => "'self' 'unsafe-inline'",
|
default => "'self'",
|
||||||
documentation => 'Style source for Content-Security-Policy',
|
documentation => 'Style source for Content-Security-Policy',
|
||||||
},
|
},
|
||||||
cspConnect => {
|
cspConnect => {
|
||||||
|
|
File diff suppressed because one or more lines are too long
Loading…
Reference in New Issue
Block a user