Skip to content
Projects
Groups
Snippets
Help
Loading...
Help
Support
Keyboard shortcuts
?
Submit feedback
Contribute to GitLab
Sign in / Register
Toggle navigation
S
slapos.core
Project overview
Project overview
Details
Activity
Releases
Repository
Repository
Files
Commits
Branches
Tags
Contributors
Graph
Compare
Labels
Merge Requests
0
Merge Requests
0
CI / CD
CI / CD
Pipelines
Jobs
Schedules
Analytics
Analytics
CI / CD
Repository
Value Stream
Members
Members
Collapse sidebar
Close sidebar
Activity
Graph
Jobs
Commits
Open sidebar
Rafael Monnerat
slapos.core
Commits
dcb65a1d
Commit
dcb65a1d
authored
1 year ago
by
Rafael Monnerat
Browse files
Options
Browse Files
Download
Email Patches
Plain Diff
slapos_web_frontend_selector: update default CSP
parent
ab87a9cd
Changes
1
Show whitespace changes
Inline
Side-by-side
Showing
1 changed file
with
1 addition
and
1 deletion
+1
-1
master/bt5/slapos_web_frontend_selector/SkinTemplateItem/portal_skins/slapos_frontend_selector_theme/WebSite_getTestFrontendResponse.py
...rontend_selector_theme/WebSite_getTestFrontendResponse.py
+1
-1
No files found.
master/bt5/slapos_web_frontend_selector/SkinTemplateItem/portal_skins/slapos_frontend_selector_theme/WebSite_getTestFrontendResponse.py
View file @
dcb65a1d
...
@@ -13,7 +13,7 @@ response.setHeader('Content-Type', 'text/plain')
...
@@ -13,7 +13,7 @@ response.setHeader('Content-Type', 'text/plain')
response
.
setHeader
(
"Content-Security-Policy"
,
"default-src 'none'; img-src 'self' data:; media-src 'self'; connect-src 'self' mail.tiolive.com *.erp5.cn; script-src 'self' 'unsafe-eval'; font-src netdna.bootstrapcdn.com; style-src 'self' netdna.bootstrapcdn.com 'unsafe-inline' data:; frame-src 'self' data:"
)
response
.
setHeader
(
"Content-Security-Policy"
,
"default-src 'none'; img-src 'self' data:; media-src 'self'; connect-src 'self' mail.tiolive.com *.erp5.cn; script-src 'self' 'unsafe-eval'; font-src netdna.bootstrapcdn.com; style-src 'self' netdna.bootstrapcdn.com 'unsafe-inline' data:; frame-src 'self' data:"
)
response
.
setHeader
(
"Access-Control-Allow-Origin"
,
"http
://demoapp
.node.grandenet.cn"
)
response
.
setHeader
(
"Access-Control-Allow-Origin"
,
"http
s://selector
.node.grandenet.cn"
)
return
"""
return
"""
###################################################################################
###################################################################################
...
...
This diff is collapsed.
Click to expand it.
Write
Preview
Markdown
is supported
0%
Try again
or
attach a new file
Attach a file
Cancel
You are about to add
0
people
to the discussion. Proceed with caution.
Finish editing this message first!
Cancel
Please
register
or
sign in
to comment