From 7c34a3676d294c9a1acc69f71ab3061074509160 Mon Sep 17 00:00:00 2001
From: Harald Eilertsen <haraldei@anduin.net>
Date: Tue, 30 Apr 2024 06:59:19 +0000
Subject: Rework Help module + begin tests for Setup module

---
 doc/hook/content_security_policy.bb | 39 -------------------------------------
 1 file changed, 39 deletions(-)
 delete mode 100644 doc/hook/content_security_policy.bb

(limited to 'doc/hook/content_security_policy.bb')

diff --git a/doc/hook/content_security_policy.bb b/doc/hook/content_security_policy.bb
deleted file mode 100644
index 96b8095ae..000000000
--- a/doc/hook/content_security_policy.bb
+++ /dev/null
@@ -1,39 +0,0 @@
-[h2]content_security_policy[/h2]
-
-Called to modify CSP settings prior to the output of the Content-Security-Policy header.
-
-This hook permits addons to modify the content-security-policy if necessary to allow loading of foreign js libraries or css styles.
-
-[code]
-if(App::$config['system']['content_security_policy']) {
-        $cspsettings = Array (
-                'script-src' => Array ("'self'","'unsafe-inline'","'unsafe-eval'"),
-                'style-src' => Array ("'self'","'unsafe-inline'")
-        );
-        call_hooks('content_security_policy',$cspsettings);
-
-        // Legitimate CSP directives (cxref: https://content-security-policy.com/)
-        $validcspdirectives=Array(
-                "default-src", "script-src", "style-src",
-                "img-src", "connect-src", "font-src",
-                "object-src", "media-src", 'frame-src',
-                'sandbox', 'report-uri', 'child-src',
-                'form-action', 'frame-ancestors', 'plugin-types'
-        );
-        $cspheader = "Content-Security-Policy:";
-        foreach ($cspsettings as $cspdirective => $csp) {
-                if (!in_array($cspdirective,$validcspdirectives)) {
-                        logger("INVALID CSP DIRECTIVE: ".$cspdirective,LOGGER_DEBUG);
-                        continue;
-                }
-                $cspsettingsarray=array_unique($cspsettings[$cspdirective]);
-                $cspsetpolicy = implode(' ',$cspsettingsarray);
-                if ($cspsetpolicy) {
-                        $cspheader .= " ".$cspdirective." ".$cspsetpolicy.";";
-                }
-        }
-        header($cspheader);
-}
-[/code]
-
-see: boot.php
-- 
cgit v1.2.3