projects / oweals / peertube.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 9ecac97) | patch
add Content Security Policy (#1252)
authorRigel Kent <par@rigelk.eu>
Thu, 13 Dec 2018 08:49:45 +0000 (09:49 +0100)
committerChocobozzz <me@florianbigard.com>
Thu, 13 Dec 2018 08:49:45 +0000 (09:49 +0100)
commit5e755fff9d70a7fd3c4f85bb524f1b774dd85b25
tree699a0724de91f4151ec7d67b700f5b7736a78e45tree | snapshot
parent9ecac97be024cf2277872986950d7eec85cbc76ecommit | diff
add Content Security Policy (#1252)

* add Content Security Policy

* remove reflect-metadata on production builds to get rid of unsafe-eval

* fix baseCSP usage

* add SRI to CSP

* add blob: to media-src

* remove SRI

* CSP set to reportOnly

* adding data: to connect-src CSP

* remove block-all-mixed-content

* add report-uri support
client/src/environments/environment.ts diff | blob | history
client/src/polyfills.ts diff | blob | history
config/default.yaml diff | blob | history
config/production.yaml.example diff | blob | history
server.ts diff | blob | history
server/controllers/client.ts diff | blob | history
server/initializers/constants.ts diff | blob | history
server/middlewares/csp.ts [new file with mode: 0644] blob
server/middlewares/dnt.ts diff | blob | history
server/middlewares/index.ts diff | blob | history
support/docker/production/config/custom-environment-variables.yaml diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.