[openstreetmap/openstreetmap-website] Content Security Policy for P2 embedded content (#2067)

Tom Hughes notifications at github.com
Mon Nov 19 17:29:08 UTC 2018


I suspect this is Safari being weird/different because it works fine in Firefox.

I think that in Firefox everything flash does is matched against the `object_src` rule because it doesn't really know what a plugin is planning to use the resource for but maybe Safari is matching against `connect_src` instead?

-- 
You are receiving this because you are subscribed to this thread.
Reply to this email directly or view it on GitHub:
https://github.com/openstreetmap/openstreetmap-website/issues/2067#issuecomment-439975672
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openstreetmap.org/pipermail/rails-dev/attachments/20181119/2e921502/attachment.html>


More information about the rails-dev mailing list