diff options
author | Mario Vavti <mario@mariovavti.com> | 2016-05-25 14:18:41 +0200 |
---|---|---|
committer | Mario Vavti <mario@mariovavti.com> | 2016-05-25 14:18:41 +0200 |
commit | 929d33fb22754e8525f3054b321891335b522faa (patch) | |
tree | c747dcc0d67eba29867630c9bd01f65b00eb02d7 /Zotlabs/Storage | |
parent | c37eaff26331c49a2c8754f6d49c6145863f47ca (diff) | |
download | volse-hubzilla-929d33fb22754e8525f3054b321891335b522faa.tar.gz volse-hubzilla-929d33fb22754e8525f3054b321891335b522faa.tar.bz2 volse-hubzilla-929d33fb22754e8525f3054b321891335b522faa.zip |
another try on #385 - replace sabres restrictive CSP with what we do in boot.php
Diffstat (limited to 'Zotlabs/Storage')
-rw-r--r-- | Zotlabs/Storage/Browser.php | 1 |
1 files changed, 1 insertions, 0 deletions
diff --git a/Zotlabs/Storage/Browser.php b/Zotlabs/Storage/Browser.php index 3556f7f06..f875cbf33 100644 --- a/Zotlabs/Storage/Browser.php +++ b/Zotlabs/Storage/Browser.php @@ -256,6 +256,7 @@ class Browser extends DAV\Browser\Plugin { $func($a); } } + $this->server->httpResponse->setHeader('Content-Security-Policy', "script-src 'self' 'unsafe-inline' 'unsafe-eval'; style-src 'self' 'unsafe-inline'"); construct_page($a); } |