harukin/core
Archived
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Merge pull request #402 from git-marijus/dev

Browse Source 
another try on #385 - replace sabres restrictive CSP with what we do in boot.php
This commit is contained in:
hubzilla 2016-05-26 14:25:48 +10:00
commit 2a9c1db0c9
2 changed files with 4 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
Zotlabs/Module/Cloud.php
View File

@ -100,9 +100,12 @@ class Cloud extends \Zotlabs\Web\Controller {
// require_once('\Zotlabs\Storage/QuotaPlugin.php'); // require_once('\Zotlabs\Storage/QuotaPlugin.php');
// $server->addPlugin(new \Zotlabs\Storage\\QuotaPlugin($auth)); // $server->addPlugin(new \Zotlabs\Storage\\QuotaPlugin($auth));
ob_start();
// All we need to do now, is to fire up the server // All we need to do now, is to fire up the server
$server->exec(); $server->exec();
ob_end_flush();
killme(); killme();
} }

1
Zotlabs/Storage/Browser.php
View File

@ -256,6 +256,7 @@ class Browser extends DAV\Browser\Plugin {
$func($a); $func($a);
} }
} }
$this->server->httpResponse->setHeader('Content-Security-Policy', "script-src 'self' 'unsafe-inline' 'unsafe-eval'; style-src 'self' 'unsafe-inline'");
construct_page($a); construct_page($a);
} }