Changeset 3326:6735e0420ee9 for admin

Timestamp:

08/27/16 12:34:53 (9 years ago)

Author:

franck <carnet.franck.paul@…>

Branch:

default

Message:

Add a CSP Report only option for admin (see about:config), default → false

File:

• admin/install/index.php (modified) (1 diff)

admin/install/index.php

@@ -172 +172 @@
           # CSP directive (admin part)
           $blog_settings->system->put('csp_admin_on',true,'boolean','Send CSP header (admin)',true,true);
+          $blog_settings->system->put('csp_admin_report_only',false,'boolean','CSP Report only violations (admin)',true,true);
           $blog_settings->system->put('csp_admin_default',"'self'",'string','CSP default-src directive',true,true);
           $blog_settings->system->put('csp_admin_script',"'self' 'unsafe-inline' 'unsafe-eval'",'string','CSP script-src directive',true,true);