github-mirror/discourse
2
0
Fork 0
mirror of https://github.com/discourse/discourse.git synced 2025-05-28 13:51:18 +08:00
Code Issues Actions 1 Packages Projects Releases Wiki Activity

DEV: Only include "report-sample" CSP directive when reporting is enabled (#9337)

Browse Source
This commit is contained in:
Penar Musaraj
2020-04-02 11:16:38 -04:00
committed by GitHub
parent ef7753953d
commit 724d2e99de
4 changed files with 10 additions and 5 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
app/controllers/csp_reports_controller.rb
View File

@ -6,7 +6,7 @@ class CspReportsController < ApplicationController
raise Discourse::NotFound unless report_collection_enabled?
Logster.add_to_env(request.env, 'CSP Report', report)
Rails.logger.warn("CSP Violation: '#{report['blocked-uri']}'")
Rails.logger.warn("CSP Violation: '#{report['blocked-uri']}' \n\n#{report['script-sample']}")
head :ok
end