aboutsummaryrefslogtreecommitdiffstats
path: root/actionpack/test/dispatch/content_security_policy_test.rb
Commit message (Expand)AuthorAgeFilesLines
* Enable `Layout/EmptyLinesAroundAccessModifier` copRyuta Kamizono2019-06-131-2/+0
* Use request object for context if there's no controllerAndrew White2018-10-221-2/+8
* Apply mapping to symbols returned from dynamic CSP sourcesAndrew White2018-10-221-2/+2
* Add CSP nonce to `style-src` directiveyuuji.yaginuma2018-05-191-0/+15
* Add support for prefetch-src directiveyuuji.yaginuma2018-05-031-0/+6
* Pass nonce to CSP policy from outsideAndrew White2018-04-181-21/+72
* Output only one nonce in CSP header per requestAndrey Novikov2018-04-171-5/+23
* Add WebSocket URI support to CSP DSL mappingsStephen Solis2018-04-121-0/+6
* Always yield a CSP policy instanceAndrew White2018-03-081-12/+58
* Add the ability to disable the global CSP in a controllerAndrew White2018-03-081-0/+14
* Add support for automatic nonce generation for Rails UJSAndrew White2018-02-191-0/+16
* Remove trailing semi-colon from CSPAndrew White2018-02-191-32/+32
* Revert "Merge pull request #32045 from eagletmt/skip-csp-header"Andrew White2018-02-191-20/+2
* Skip generating empty CSP header when no policy is configuredKohei Suzuki2018-02-181-2/+20
* Fix CSP copy boolean directives (#31326)Simon Dawson2017-12-051-0/+9
* Add DSL for configuring Content-Security-Policy headerAndrew White2017-11-271-0/+359