You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
The plugin should implement the following features:
Have a configurable setup
Enforcement or Report-Only
Enable strict-dynamic (defaults to disabled)
Enable unsafe-eval (defaults to disabled)
Set a reporting endpoint or group (defaults to nothing for the time being, it will be a handler that the plugin installs later)
Set base-src (defaults to none)
Add a set of hashes (defaults to empty)
Set a Content-Security-Policy header
The policy should be a strict CSP and nonces should be generated in the Before phase. The plugin will be responsible of putting the nonce in the request context for later retrieval.
The text was updated successfully, but these errors were encountered:
empijei
changed the title
feature request: plugins: add CSP
feature request: plugins: add basic CSP functionality
Aug 14, 2020
The plugin should implement the following features:
The policy should be a strict CSP and nonces should be generated in the
Before
phase. The plugin will be responsible of putting the nonce in the request context for later retrieval.The text was updated successfully, but these errors were encountered: