[openstreetmap/openstreetmap-website] OAuth2 form-action CSP error (Issue #3424)
Tom Hughes
notifications at github.com
Mon Jan 17 12:44:29 UTC 2022
In theory but it would be quite fragile, and we already allowed redirects to arbitrary URLs, just not to arbitrary schemes, so I'm not sure there is a huge gain from trying to do it.
I'll deploy that to production now anyway.
--
Reply to this email directly or view it on GitHub:
https://github.com/openstreetmap/openstreetmap-website/issues/3424#issuecomment-1014480592
You are receiving this because you are subscribed to this thread.
Message ID: <openstreetmap/openstreetmap-website/issues/3424/1014480592 at github.com>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openstreetmap.org/pipermail/rails-dev/attachments/20220117/ef973ef0/attachment.htm>
More information about the rails-dev
mailing list