Permalink
Browse files

Add CSP headers to browser comparision, to make sure CSP works when s…

…electing 'my browser'
  • Loading branch information...
1 parent 13db1a6 commit 78b55a47f9792d7e3a7df888f65871b4608351b2 @NielsLeenheer NielsLeenheer committed Nov 13, 2013
Showing with 4 additions and 1 deletion.
  1. +4 −1 backend/controllers/browser.php
@@ -7,7 +7,10 @@
include('../models/browsers.php');
include('../models/results.php');
-
+ header ("X-WebKit-CSP: default-src 'unsafe-inline' *; frame-src *; options inline-script;");
+ header ("Content-Security-Policy: default-src 'unsafe-inline' *; frame-src *; options inline-script;");
+ header ("X-Content-Security-Policy: default-src 'unsafe-inline' *; frame-src *; options inline-script;");
+
$tpl = new Template('../templates/browser.html');

0 comments on commit 78b55a4

Please sign in to comment.