Mirrors
/
postfixadmin
mirror of https://github.com/postfixadmin/postfixadmin.git
3
0
Fork 0
Code Releases Activity
Browse Source

add a lax content-security-policy http header - see #905

pull/906/head
David Goodwin 9 months ago
parent
b30af8fc6a
commit
0f53b0343b
Failed to extract signature
1 changed files with 2 additions and 0 deletions
Whitespace
Show all changes Ignore whitespace when comparing lines Ignore changes in amount of whitespace Ignore changes in whitespace at EOL
Split View
Diff Options
Show Stats Download Patch File Download Diff File
  1. 2
      common.php

2
common.php
View File

@ -54,6 +54,8 @@ if (!defined('POSTFIXADMIN')) {
// avoid clickjacking attacks?
header('X-Frame-Options: DENY');
// see https://github.com/postfixadmin/postfixadmin/issues/905
header("Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-inline'; style-src 'self' 'unsafe-inline';");
}
}

Write Preview
Loading…
Cancel
Save