From 97b0a6da4d97f43a8b39932a9494e188bb021547 Mon Sep 17 00:00:00 2001 From: Tim Nelles Date: Wed, 24 Apr 2024 17:17:08 +0200 Subject: [PATCH] Adds opctim/symfony-csp-bundle --- .../config/packages/opctim_csp_bundle.yaml | 30 +++++++++++++++++++ opctim/symfony-csp-bundle/1.0/manifest.json | 9 ++++++ 2 files changed, 39 insertions(+) create mode 100644 opctim/symfony-csp-bundle/1.0/config/packages/opctim_csp_bundle.yaml create mode 100644 opctim/symfony-csp-bundle/1.0/manifest.json diff --git a/opctim/symfony-csp-bundle/1.0/config/packages/opctim_csp_bundle.yaml b/opctim/symfony-csp-bundle/1.0/config/packages/opctim_csp_bundle.yaml new file mode 100644 index 000000000..62bb15752 --- /dev/null +++ b/opctim/symfony-csp-bundle/1.0/config/packages/opctim_csp_bundle.yaml @@ -0,0 +1,30 @@ +opctim_csp_bundle: + # See vendor/opctim/symfony-csp-bundle/README.md for more details. + always_add: [] + + # https://developer.mozilla.org/en-US/docs/Web/HTTP/CSP + directives: &directives + default-src: + - "'self'" + - 'data:' + - 'https:' + base-uri: + - "'self'" + object-src: + - "'none'" + script-src: + - "'self'" + img-src: + - "'self'" + style-src: + - "'self'" + - "'unsafe-inline'" + +# For different set-ups in the dev environment +when@dev: + opctim_csp_bundle: + # always_add: [] + + directives: + <<: *directives + # Add your overrides here \ No newline at end of file diff --git a/opctim/symfony-csp-bundle/1.0/manifest.json b/opctim/symfony-csp-bundle/1.0/manifest.json new file mode 100644 index 000000000..81ae2c9af --- /dev/null +++ b/opctim/symfony-csp-bundle/1.0/manifest.json @@ -0,0 +1,9 @@ +{ + "bundles": { + "Opctim\\CspBundle\\OpctimCspBundle": ["all"] + }, + "copy-from-recipe": { + "config/": "%CONFIG_DIR%/" + }, + "aliases": ["csp"] +}