]> source.dussan.org Git - nextcloud-server.git/commit
projects / nextcloud-server.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 4e88cd3) | patch
Set empty CSP by default 14952/head
authorRoeland Jago Douma <roeland@famdouma.nl>
Wed, 3 Apr 2019 16:42:34 +0000 (18:42 +0200)
committerRoeland Jago Douma <roeland@famdouma.nl>
Tue, 16 Apr 2019 12:09:39 +0000 (14:09 +0200)
commit7276735eb423ed126333923bb921d9d4bef16f07
tree4131f2b8665f2e5066eb84d9ef39691709accc42tree | snapshot
parent4e88cd3aae0b1c8e662197dd10e2e65ffe8cf489commit | diff
Set empty CSP by default

For #14179

By default responses should have the strictest (and simplest) CSP
possible. Only template responses should require an actual CSP.

Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
15 files changed:
lib/public/AppFramework/Http/DataDisplayResponse.php diff | blob | history
lib/public/AppFramework/Http/DataResponse.php diff | blob | history
lib/public/AppFramework/Http/DownloadResponse.php diff | blob | history
lib/public/AppFramework/Http/FileDisplayResponse.php diff | blob | history
lib/public/AppFramework/Http/JSONResponse.php diff | blob | history
lib/public/AppFramework/Http/NotFoundResponse.php diff | blob | history
lib/public/AppFramework/Http/OCSResponse.php diff | blob | history
lib/public/AppFramework/Http/RedirectResponse.php diff | blob | history
lib/public/AppFramework/Http/Response.php diff | blob | history
lib/public/AppFramework/Http/StreamResponse.php diff | blob | history
lib/public/AppFramework/Http/TemplateResponse.php diff | blob | history
lib/public/AppFramework/Http/ZipResponse.php diff | blob | history
tests/lib/AppFramework/Controller/ControllerTest.php diff | blob | history
tests/lib/AppFramework/Http/DataResponseTest.php diff | blob | history
tests/lib/AppFramework/Http/ResponseTest.php diff | blob | history
Nextcloud server, a safe home for all your data: https://github.com/nextcloud/server