github-mirror/discourse
2
0
Fork 0
mirror of https://github.com/discourse/discourse.git synced 2025-06-03 19:39:30 +08:00
Code Issues Actions 1 Packages Projects Releases Wiki Activity

FEATURE: [Experimental] Content Security Policy (#6504)

Browse Source
This commit is contained in:
Kyle Zhao
2018-10-19 10:39:22 -04:00
committed by GitHub
parent 3d5085c045
commit fb8231077a
11 changed files with 327 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files

3
config/application.rb
View File

@ -190,6 +190,9 @@ module Discourse
# supports etags (post 1.7)
config.middleware.delete Rack::ETag
require 'content_security_policy'
config.middleware.swap ActionDispatch::ContentSecurityPolicy::Middleware, ContentSecurityPolicy::Middleware
require 'middleware/discourse_public_exceptions'
config.exceptions_app = Middleware::DiscoursePublicExceptions.new(Rails.public_path)