aboutsummaryrefslogtreecommitdiffstats
path: root/lib/private/Security/CSP
Commit message (Expand)AuthorAgeFilesLines
* chore(deps): Update nextcloud/coding-standard to v1.3.1provokateurin2024-09-191-3/+3
* feat: Provide CSP nonce as `<meta>` elementFerdinand Thiessen2024-08-131-1/+2
* fix: Make sure CSP nonce is not double base64 encodedFerdinand Thiessen2024-08-131-1/+4
* chore: Add SPDX headerAndy Scherzinger2024-05-243-66/+8
* fix(CSP): Add CSP nonce by default and convert `browserSupportsCspV3` to bloc...Ferdinand Thiessen2024-03-261-8/+5
* fix: Add edge as supported user agent for CSPv3 noncesJulius Härtl2024-03-081-0/+1
* feat(ContentSecurityPolicy): Allow to set `strict-dynamic` on `script-src-ele...Ferdinand Thiessen2023-11-171-0/+8
* Refactors lib/private/Security.Faraz Samapoor2023-09-273-125/+31
* Allow "wasm-unsafe-eval" in CSPDaniel Calviño Sánchez2023-08-101-0/+8
* Fix detection of firefox in ContentSecurityPolicyNonceManagerCarl Schwan2022-06-291-4/+2
* Add CSP policy merge priority for booleansVincent Petry2022-04-012-1/+13
* Allow to set a strict-dynamic CSP through the APIJulius Härtl2022-03-091-0/+7
* Update php licensesJohn Molakvoæ (skjnldsv)2021-06-043-4/+1
* Update the license headers for Nextcloud 20Christoph Wurst2020-08-241-0/+1
* Prefer typed event over string based onesMorris Jobke2020-08-101-1/+1
* Update license headers for 19Christoph Wurst2020-04-292-0/+2
* Format control structures, classes, methods and functionChristoph Wurst2020-04-103-6/+5
* Update the license headers for Nextcloud 19Christoph Wurst2020-03-312-1/+2
* fix safari useragent for versions with 3 digitsPavel Krasikov2020-03-141-1/+1
* Update license headersChristoph Wurst2019-12-053-3/+12
* Some php-cs fixesRoeland Jago Douma2019-11-221-0/+1
* Add form-action CSP elementRoeland Jago Douma2019-07-311-0/+9
* setting unsafe-eval is deprecatedRoeland Jago Douma2019-07-301-0/+2
* Add support for CSP_NONCE server variableSam Bull2019-07-181-1/+5
* Add an event to edit the CSPRoeland Jago Douma2019-07-081-0/+12
* Merge pull request #11914 from nextcloud/csp/report-uriMorris Jobke2018-10-231-0/+8
|\
| * Add report-uri to CSPRoeland Jago Douma2018-10-211-0/+8
* | Add nonce for Safari 12+Roeland Jago Douma2018-10-211-0/+2
|/
* Deprecate the childSrc functionsRoeland Jago Douma2018-09-041-0/+2
* Add workerSrc to CSPRoeland Jago Douma2018-09-041-0/+8
* Make OC\Security\CSP strictRoeland Jago Douma2018-03-053-30/+33
* Update license headersMorris Jobke2017-11-062-0/+5
* Add CSP frame-ancestors supportThomas Citharel2017-09-151-0/+14
* Safari CSPv3 support is sub-parLukas Reschke2016-12-141-2/+0
* Identify Chromium as ChromeJoas Schilling2016-10-261-2/+2
* Missing returns + autoloader fileLukas Reschke2016-10-251-0/+1
* Move browserSupportsCspV3 to CSPNonceManagerRoeland Jago Douma2016-10-251-1/+28
* Add ContentSecurityPolicyNonceManagerLukas Reschke2016-10-241-0/+54
* Fix othersJoas Schilling2016-07-212-2/+4
* Update license headersLukas Reschke2016-05-262-2/+2
* Move \OC\Security to PSR-4Roeland Jago Douma2016-04-142-0/+272
generated by cgit v1.2.3 (git 2.39.1) at 2025-01-02 21:36:43 +0000