-
Notifications
You must be signed in to change notification settings - Fork 86
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
add argument to add/remove x-csp header #39
Conversation
README.rst
Outdated
@@ -103,6 +103,7 @@ Options | |||
- ``content_security_policy_report_uri``, default ``None``, a string | |||
indicating the report URI used for `CSP violation reports | |||
<https://developer.mozilla.org/en-US/docs/Web/Security/CSP/Using_CSP_violation_reports>`_ | |||
- ``support_x_header``, default ``True``, Whether to add X-CSP header |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Let's call this legacy_content_security_policy_header
. Yeah, it's verbose, but it fits with the rest of the options and makes it immediately obvious what this does. Might be useful to link to the page that describes the deprecated header.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
done it in commit b688897 (also i linted the test_talisman file)
Thank you, @Heisendev! |
issue 38
#38