mirrors
/
nextcloud
kopie van https://github.com/nextcloud/server.git
Volgen 1
Ster 0
Vork 0
Code Kwesties 0 Publicaties 1008 Wiki Activiteit
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
63603 Commits
419 Branches
Tree: 601664bc84
Branches Labels
${ item.name }
Maak branch ${ searchTerm }
van '601664bc84'
${ noResults }
nextcloud/lib/public/Security/IContentSecurityPolicyManag...

IContentSecurityPolicyManager.php 2.1KB
Ruw Blame Geschiedenis

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657 
  1. <?php

  2. 

  3. declare(strict_types=1);

  4. 

  5. /**

  6.  * @copyright Copyright (c) 2016, ownCloud, Inc.

  7.  *

  8.  * @author Christoph Wurst <christoph@winzerhof-wurst.at>

  9.  * @author Lukas Reschke <lukas@statuscode.ch>

  10.  * @author Roeland Jago Douma <roeland@famdouma.nl>

  11.  *

  12.  * @license AGPL-3.0

  13.  *

  14.  * This code is free software: you can redistribute it and/or modify

  15.  * it under the terms of the GNU Affero General Public License, version 3,

  16.  * as published by the Free Software Foundation.

  17.  *

  18.  * This program is distributed in the hope that it will be useful,

  19.  * but WITHOUT ANY WARRANTY; without even the implied warranty of

  20.  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the

  21.  * GNU Affero General Public License for more details.

  22.  *

  23.  * You should have received a copy of the GNU Affero General Public License, version 3,

  24.  * along with this program. If not, see <http://www.gnu.org/licenses/>

  25.  *

  26.  */

  27. namespace OCP\Security;

  28. 

  29. use OCP\AppFramework\Http\EmptyContentSecurityPolicy;

  30. 

  31. /**

  32.  * Used for Content Security Policy manipulations

  33.  *

  34.  * @since 9.0.0

  35.  * @deprecated 17.0.0 listen to the AddContentSecurityPolicyEvent to add a policy

  36.  */

  37. interface IContentSecurityPolicyManager {

  38. 	/**

  39. 	 * Allows to inject something into the default content policy. This is for

  40. 	 * example useful when you're injecting Javascript code into a view belonging

  41. 	 * to another controller and cannot modify its Content-Security-Policy itself.

  42. 	 * Note that the adjustment is only applied to applications that use AppFramework

  43. 	 * controllers.

  44. 	 *

  45. 	 * To use this from your `app.php` use `\OC::$server->getContentSecurityPolicyManager()->addDefaultPolicy($policy)`,

  46. 	 * $policy has to be of type `\OCP\AppFramework\Http\ContentSecurityPolicy`.

  47. 	 *

  48. 	 * WARNING: Using this API incorrectly may make the instance more insecure.

  49. 	 * Do think twice before adding whitelisting resources. Please do also note

  50. 	 * that it is not possible to use the `disallowXYZ` functions.

  51. 	 *

  52. 	 * @param EmptyContentSecurityPolicy $policy

  53. 	 * @since 9.0.0

  54. 	 * @deprecated 17.0.0 listen to the AddContentSecurityPolicyEvent to add a policy

  55. 	 */

  56. 	public function addDefaultPolicy(EmptyContentSecurityPolicy $policy);

  57. }