diff options
| author | Roeland Jago Douma <rullzer@users.noreply.github.com> | 2018-10-14 21:17:43 +0200 |
|---|---|---|
| committer | GitHub <noreply@github.com> | 2018-10-14 21:17:43 +0200 |
| commit | 82a5833217d8fb1a74e7838b3e2ccf2cb9e1b90c (patch) | |
| tree | 2f64bf10686fbdb8f2be0d6b0acd6a7f2b07f162 /tests/lib/AppFramework/Http/DataResponseTest.php | |
| parent | 0fca815b4dd601381a909656a1e3e7a7e89714d2 (diff) | |
| parent | 056a74e3230071191fc0c19cfb8c17d2f8c8ab12 (diff) | |
| download | nextcloud-server-82a5833217d8fb1a74e7838b3e2ccf2cb9e1b90c.tar.gz nextcloud-server-82a5833217d8fb1a74e7838b3e2ccf2cb9e1b90c.zip | |
Merge pull request #11028 from nextcloud/feature/no_eval_csp
Move to stricter CSP
Diffstat (limited to 'tests/lib/AppFramework/Http/DataResponseTest.php')
| -rw-r--r-- | tests/lib/AppFramework/Http/DataResponseTest.php | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/tests/lib/AppFramework/Http/DataResponseTest.php b/tests/lib/AppFramework/Http/DataResponseTest.php index 5b5eda8f11d..28364d6aa77 100644 --- a/tests/lib/AppFramework/Http/DataResponseTest.php +++ b/tests/lib/AppFramework/Http/DataResponseTest.php @@ -68,7 +68,7 @@ class DataResponseTest extends \Test\TestCase { $expectedHeaders = [ 'Cache-Control' => 'no-cache, no-store, must-revalidate', - 'Content-Security-Policy' => "default-src 'none';base-uri 'none';manifest-src 'self';script-src 'self' 'unsafe-eval';style-src 'self' 'unsafe-inline';img-src 'self' data: blob:;font-src 'self';connect-src 'self';media-src 'self'", + 'Content-Security-Policy' => "default-src 'none';base-uri 'none';manifest-src 'self';script-src 'self';style-src 'self' 'unsafe-inline';img-src 'self' data: blob:;font-src 'self';connect-src 'self';media-src 'self'", ]; $expectedHeaders = array_merge($expectedHeaders, $headers); |