ThibG
|
5a122f1450
|
Fix CSP needlessly allowing blob URLs in script-src (#11620)
|
2019-08-19 20:36:58 +02:00 |
|
Eugen Rochko
|
b1f116335c
|
Fix media host not being included in connect-src for OCR (#11577)
|
2019-08-16 01:54:36 +02:00 |
|
Eugen Rochko
|
41b188dce6
|
Add OCR tool to media editing modal (#11566)
|
2019-08-15 15:13:26 +02:00 |
|
ThibG
|
f8e9555e73
|
Add manifest_src to CSP, add blob to connect_src (#8967)
|
2018-10-12 19:07:30 +02:00 |
|
Eugen Rochko
|
0dbb3a8786
|
Fix CSP headers blocking media and development environment (#8962)
Regression from #8957
|
2018-10-12 01:43:09 +02:00 |
|
ThibG
|
51c53e709f
|
Set Content-Security-Policy rules through RoR's config (#8957)
* Set CSP rules in RoR's configuration
* Override CSP setting in the embed controller to allow frames
|
2018-10-11 20:35:46 +02:00 |
|
Yamagishi Kazutoshi
|
9761b940ac
|
Upgrade Rails to version 5.2.0 (#5898)
|
2018-04-12 14:45:17 +02:00 |
|