Changeset 3314:d1cf0dda13c9 for inc

Timestamp:

08/16/16 23:02:32 (9 years ago)

Author:

franck <carnet.franck.paul@…>

Branch:

2.10

Message:

Double single quote rather than escape them → prevents error for PostgreSQL update, fixes #2196

File:

• inc/dbschema/upgrade.php (modified) (1 diff)

inc/dbschema/upgrade.php

@@ -581 +581 @@
                     sprintf($strReq,'csp_admin_on',true,'boolean','Send CSP header (admin)'));
                $core->con->execute(
-                    sprintf($strReq,'csp_admin_default',"\'self\'",'string','CSP default-src directive'));
-               $core->con->execute(
-                    sprintf($strReq,'csp_admin_script',"\'self\' \'unsafe-inline\' \'unsafe-eval\'",'string','CSP script-src directive'));
-               $core->con->execute(
-                    sprintf($strReq,'csp_admin_style',"\'self\' \'unsafe-inline\'",'string','CSP style-src directive'));
-               $core->con->execute(
-                    sprintf($strReq,'csp_admin_img',"\'self\' data: media.dotaddict.org",'string','CSP img-src directive'));
+                    sprintf($strReq,'csp_admin_default',"''self''",'string','CSP default-src directive'));
+               $core->con->execute(
+                    sprintf($strReq,'csp_admin_script',"''self'' ''unsafe-inline'' ''unsafe-eval''",'string','CSP script-src directive'));
+               $core->con->execute(
+                    sprintf($strReq,'csp_admin_style',"''self'' ''unsafe-inline''",'string','CSP style-src directive'));
+               $core->con->execute(
+                    sprintf($strReq,'csp_admin_img',"''self'' data: media.dotaddict.org",'string','CSP img-src directive'));
           }