Labels Milestones

New Issue

Content Security Policy header #119

Closed

opened 2 weeks ago by Zankaria · 2 comments

Zankaria commented 2 weeks ago

Collaborator

https://developer.mozilla.org/en-US/docs/Web/HTTP/CSP
This requries a bit more setup than HSTS.
We also need to write a restrictive policy that still allows to embed youtube videos on the main and dev sites.
Not sure how it works with mediawiki, cytube and mediawiki

https://developer.mozilla.org/en-US/docs/Web/HTTP/CSP This requries a bit more setup than HSTS. We also need to write a restrictive policy that still allows to embed youtube videos on the main and dev sites. Not sure how it works with mediawiki, cytube and mediawiki

Zankaria added the

devops

label 2 weeks ago

Zankaria commented 2 weeks ago

Poster

Collaborator

Should we use it in report only mode?

Should we use it in report only mode?

Zankaria referenced this issue 3 days ago

Harden HTTP Headers #129

Zankaria commented 3 days ago

Poster

Collaborator

Closed in favour of #129

Closed in favour of #129

Zankaria closed this issue 3 days ago

Zankaria added the

duplicate

label 3 days ago

Sign in to join this conversation.

No Branch/Tag Specified

Branches Tags

block_mass_delete_threads

config

display-appeal-src-ip

dockerize

fix-hud-dash

gitIgnore1

lazyLoading

mitigate-move-dataloss

safer-thread-move

tinyboard_noise

Labels

Apply labels

Clear labels

bug
Something is not working devops
Devops related, rather than software duplicate
This issue or pull request already exists feature proposal
A feature or change that could be implemented feature request
New feature help wanted
Need some help invalid
Something is wrong question
More information is needed wontfix
This won't be fixed

No Label bug devops duplicate feature proposal feature request help wanted invalid question wontfix

Milestone

Set milestone

Clear milestone

No items

No Milestone

Projects

Clear projects

No project

Assignees

Assign users

Clear assignees

No Assignees

1 Participants

Notifications

Subscribe

Due Date

The due date is invalid or out of range. Please use the format 'yyyy-mm-dd'.

No due date set.

Dependencies

This issue currently doesn't have any dependencies.

Write Preview

Loading…

Cancel

Save

There is no content yet.