Content Security Policy #139
Labels
No labels
bug
duplicate
enhancement
help wanted
invalid
question
wontfix
No milestone
No project
No assignees
1 participant
Due date
No due date set.
Dependencies
No dependencies set.
Reference: foerderverein/vereinsverwaltung#139
Loading…
Add table
Add a link
Reference in a new issue
No description provided.
Delete branch "%!s()"
Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?
Content-Security-Policy-Header setzten:
Content-Security-Policy: default-src 'none'; style-src 'self'; script-src 'self' 'nonce-…'; font-src 'self'; base-uri 'none'; form-action 'self'; frame-ancestors 'none';
Zusätzlich wo nötig (django-crispy-forms-Formulare mit Dateiupload)
'unsafe-inline'
beistyle-src
.img-src 'self'
auch notwendig, damit das Favicon lädt.