cafe-grader-web Files · config/initializers/content_security

cafe-grader-web

Location: cafe-grader-web/config/initializers/content_security_policy.rb - annotation

Commit Description:

merge with rails7 branch

Commit Description:

merge with rails7 branch

References:

r824:feb677289536 default

File last commit:

r820:0b2fef7e1246 upgrade_rails7

Show/Diff file:

Action:

            
                    config/initializers/content_security_policy.rb
                
             | 26 lines
             | 1.1 KiB
             | text/x-ruby 
             | RubyLexer
             | 
      
            History
        
           Show Full History
         |
          Source
         | Raw
         |
              
              Download
              
     admin
  
upgrade to rails 5.2

              r750
            
      # Be sure to restart your server when you modify this file.

      # Define an application-wide content security policy

      # For further information see the following documentation

      # https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Content-Security-Policy

     admin
  
move to rails 7 and ruby 3.0.2

              r820
            
      # Rails.application.configure do

      #   config.content_security_policy do |policy|

      #     policy.default_src :self, :https

      #     policy.font_src    :self, :https, :data

      #     policy.img_src     :self, :https, :data

      #     policy.object_src  :none

      #     policy.script_src  :self, :https

      #     policy.style_src   :self, :https

      #     # Specify URI for violation reports

      #     # policy.report_uri "/csp-violation-report-endpoint"

      #   end

      #

      #   # Generate session nonces for permitted importmap and inline scripts

      #   config.content_security_policy_nonce_generator = ->(request) { request.session.id.to_s }

      #   config.content_security_policy_nonce_directives = %w(script-src)

      #

      #   # Report CSP violations to a specified URI. See:

      #   # https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Content-Security-Policy-Report-Only

      #   # config.content_security_policy_report_only = true

     admin
  
upgrade to rails 5.2

              r750
            
      # end

	Site-wide shortcuts
/	Use quick search box
g h	Goto home page
g g	Goto my private gists page
g G	Goto my public gists page
n r	New repository page
n g	New gist page

	Repositories
g s	Goto summary page
g c	Goto changelog page
g f	Goto files page
g F	Goto files page with file search activated
g p	Goto pull requests page
g o	Goto repository settings
g O	Goto repository permissions settings

Sign in to your account

Last Author

admin upgrade to rails 5.2	r750	# Be sure to restart your server when you modify this file.

		# Define an application-wide content security policy
		# For further information see the following documentation
		# https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Content-Security-Policy

admin move to rails 7 and ruby 3.0.2	r820	# Rails.application.configure do
		# config.content_security_policy do \|policy\|
		# policy.default_src :self, :https
		# policy.font_src :self, :https, :data
		# policy.img_src :self, :https, :data
		# policy.object_src :none
		# policy.script_src :self, :https
		# policy.style_src :self, :https
		# # Specify URI for violation reports
		# # policy.report_uri "/csp-violation-report-endpoint"
		# end
		#
		# # Generate session nonces for permitted importmap and inline scripts
		# config.content_security_policy_nonce_generator = ->(request) { request.session.id.to_s }
		# config.content_security_policy_nonce_directives = %w(script-src)
		#
		# # Report CSP violations to a specified URI. See:
		# # https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Content-Security-Policy-Report-Only
		# # config.content_security_policy_report_only = true
admin upgrade to rails 5.2	r750	# end