Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

chore(appframework)!: Drop \OCP\AppFramework\Http\EmptyContentSecurityPolicy::allowInlineScript #38642

Merged
merged 1 commit into from Jun 12, 2023
Merged

chore(appframework)!: Drop \OCP\AppFramework\Http\EmptyContentSecurityPolicy::allowInlineScript #38642

merged 1 commit into from Jun 12, 2023

Conversation

ChristophWurst
Copy link
Member

Summary

Deprecated in Nextcloud 10, released 2016-08-25.

TODO

Checklist

@ChristophWurst ChristophWurst added 3. to review Waiting for reviews security technical debt pending documentation This pull request needs an associated documentation update labels Jun 5, 2023
@ChristophWurst ChristophWurst self-assigned this Jun 5, 2023
@ChristophWurst ChristophWurst added this to the Nextcloud 28 milestone Jun 5, 2023
@juliushaertl
Copy link
Member

Tests need some more adjustments:


There were 7 errors:

1) Test\AppFramework\Http\ContentSecurityPolicyTest::testGetPolicyScriptAllowInline
Error: Call to undefined method OCP\AppFramework\Http\ContentSecurityPolicy::allowInlineScript()

/drone/src/tests/lib/AppFramework/Http/ContentSecurityPolicyTest.php:74

2) Test\AppFramework\Http\ContentSecurityPolicyTest::testGetPolicyScriptAllowInlineWithDomain
Error: Call to undefined method OCP\AppFramework\Http\ContentSecurityPolicy::allowInlineScript()

/drone/src/tests/lib/AppFramework/Http/ContentSecurityPolicyTest.php:82

3) Test\AppFramework\Http\ContentSecurityPolicyTest::testGetPolicyScriptDisallowInlineAndEval
Error: Call to undefined method OCP\AppFramework\Http\ContentSecurityPolicy::allowInlineScript()

/drone/src/tests/lib/AppFramework/Http/ContentSecurityPolicyTest.php:89

4) Test\AppFramework\Http\ResponseTest::testOverwriteCsp
Error: Call to undefined method OCP\AppFramework\Http\ContentSecurityPolicy::allowInlineScript()

/drone/src/tests/lib/AppFramework/Http/ResponseTest.php:70

5) Test\AppFramework\Http\ResponseTest::testGetCsp
Error: Call to undefined method OCP\AppFramework\Http\ContentSecurityPolicy::allowInlineScript()

/drone/src/tests/lib/AppFramework/Http/ResponseTest.php:80

6) Test\Security\CSP\ContentSecurityPolicyManagerTest::testGetDefaultPolicyWithPolicies
Error: Call to undefined method OCP\AppFramework\Http\ContentSecurityPolicy::allowInlineScript()

/drone/src/tests/lib/Security/CSP/ContentSecurityPolicyManagerTest.php:59

7) Test\Security\CSP\ContentSecurityPolicyManagerTest::testGetDefaultPolicyWithPoliciesViaEvent
Error: Call to undefined method OC\Security\CSP\ContentSecurityPolicy::allowInlineScript()

/drone/src/tests/lib/Security/CSP/ContentSecurityPolicyManagerTest.php:113

@szaimen
Copy link
Contributor

szaimen commented Jun 12, 2023

CI failure related

@szaimen szaimen added 2. developing Work in progress and removed 3. to review Waiting for reviews labels Jun 12, 2023
@ChristophWurst ChristophWurst marked this pull request as draft June 12, 2023 07:53
@ChristophWurst
Copy link
Member Author

Which ones @szaimen except the expected fixup and DCO checks?

@szaimen
Copy link
Contributor

szaimen commented Jun 12, 2023

Which ones @szaimen except the expected fixup and DCO checks?

yes, I meant these :)

@ChristophWurst ChristophWurst force-pushed the chore/appframework/drop-emptycontentsecuritypolicy-allowinlinescript branch from f2aef99 to ec4ebe0 Compare June 12, 2023 08:03
@ChristophWurst
chore(appframework)!: Drop \OCP\AppFramework\Http\EmptyContentSecurit…
08a3f37 
…yPolicy::allowInlineScript

Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>
@ChristophWurst ChristophWurst force-pushed the chore/appframework/drop-emptycontentsecuritypolicy-allowinlinescript branch from ec4ebe0 to 08a3f37 Compare June 12, 2023 08:04
@ChristophWurst ChristophWurst marked this pull request as ready for review June 12, 2023 08:04
@ChristophWurst ChristophWurst added 4. to release Ready to be released and/or waiting for tests to finish and removed 2. developing Work in progress labels Jun 12, 2023
@szaimen szaimen enabled auto-merge June 12, 2023 08:04
@szaimen szaimen merged commit 63bf207 into master Jun 12, 2023
39 checks passed
@szaimen szaimen deleted the chore/appframework/drop-emptycontentsecuritypolicy-allowinlinescript branch June 12, 2023 12:20
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@rullzer rullzer rullzer approved these changes

@juliushaertl juliushaertl juliushaertl approved these changes

@nickvergessen nickvergessen Awaiting requested review from nickvergessen

Assignees

@ChristophWurst ChristophWurst

Labels
4. to release Ready to be released and/or waiting for tests to finish pending documentation This pull request needs an associated documentation update security technical debt
Projects
💌 📅 👥 Groupware team
Archived in project
Milestone
Nextcloud 28
Development

Successfully merging this pull request may close these issues.

None yet
4 participants
@ChristophWurst @juliushaertl @szaimen @rullzer