[openstreetmap/openstreetmap-website] Switch to using rails builtin content security policy support (PR #4627)
Andy Allan
notifications at github.com
Wed May 22 14:24:36 UTC 2024
@gravitystorm requested changes on this pull request.
Looks good to me, just one small question inline.
Also needs rebasing.
> @@ -4,6 +4,10 @@ class ExportController < ApplicationController
before_action :update_totp, :only => [:finish]
authorize_resource :class => false
+ content_security_policy do |policy|
Should this be `content_security_policy(:only => :embed) do |policy|`?
--
Reply to this email directly or view it on GitHub:
https://github.com/openstreetmap/openstreetmap-website/pull/4627#pullrequestreview-2071413843
You are receiving this because you are subscribed to this thread.
Message ID: <openstreetmap/openstreetmap-website/pull/4627/review/2071413843 at github.com>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openstreetmap.org/pipermail/rails-dev/attachments/20240522/2118be50/attachment.htm>
More information about the rails-dev
mailing list