diff options
author | hubzilla <git@macgirvin.com> | 2016-05-26 14:25:48 +1000 |
---|---|---|
committer | hubzilla <git@macgirvin.com> | 2016-05-26 14:25:48 +1000 |
commit | 2a9c1db0c9bd9927598bf082a9da501264ba4c8e (patch) | |
tree | 3357fb48006343eac89ff4c3374c7f21cf0944f3 | |
parent | 4716627453c811bd6be6bf72afd83f43ab1abfc0 (diff) | |
parent | 929d33fb22754e8525f3054b321891335b522faa (diff) | |
download | volse-hubzilla-2a9c1db0c9bd9927598bf082a9da501264ba4c8e.tar.gz volse-hubzilla-2a9c1db0c9bd9927598bf082a9da501264ba4c8e.tar.bz2 volse-hubzilla-2a9c1db0c9bd9927598bf082a9da501264ba4c8e.zip |
Merge pull request #402 from git-marijus/dev
another try on #385 - replace sabres restrictive CSP with what we do in boot.php
-rw-r--r-- | Zotlabs/Module/Cloud.php | 3 | ||||
-rw-r--r-- | Zotlabs/Storage/Browser.php | 1 |
2 files changed, 4 insertions, 0 deletions
diff --git a/Zotlabs/Module/Cloud.php b/Zotlabs/Module/Cloud.php index d9b0c47d4..b691475ce 100644 --- a/Zotlabs/Module/Cloud.php +++ b/Zotlabs/Module/Cloud.php @@ -100,9 +100,12 @@ class Cloud extends \Zotlabs\Web\Controller { // require_once('\Zotlabs\Storage/QuotaPlugin.php'); // $server->addPlugin(new \Zotlabs\Storage\\QuotaPlugin($auth)); + ob_start(); // All we need to do now, is to fire up the server $server->exec(); + ob_end_flush(); + killme(); } diff --git a/Zotlabs/Storage/Browser.php b/Zotlabs/Storage/Browser.php index 3556f7f06..f875cbf33 100644 --- a/Zotlabs/Storage/Browser.php +++ b/Zotlabs/Storage/Browser.php @@ -256,6 +256,7 @@ class Browser extends DAV\Browser\Plugin { $func($a); } } + $this->server->httpResponse->setHeader('Content-Security-Policy', "script-src 'self' 'unsafe-inline' 'unsafe-eval'; style-src 'self' 'unsafe-inline'"); construct_page($a); } |