13 Commits (d82de360c13894746d3974d11c9505c8937ebdee)

Author SHA1 Message Date
  Rey Tucker 35b2ba5030 Remove form_action from CSP 6 years ago
  Thibaut Girka 1283e112b9 Tighten CSP a bit 6 years ago
  ThibG 8ab081ec32 Add manifest_src to CSP, add blob to connect_src (#8967) 6 years ago
  Eugen Rochko edc7f895be
Fix CSP headers blocking media and development environment (#8962) 6 years ago
  ThibG 2d27c11061 Set Content-Security-Policy rules through RoR's config (#8957) 6 years ago
  Rey Tucker 40d04a3209 Add manifest_src to CSP 6 years ago
  Thibaut Girka c4b3479173 Fix CSP with S3/SWIFT hosts 6 years ago
  Thibaut Girka 3fe5029fbe Adjust CSP to fix image resizing 6 years ago
  Thibaut Girka 0ddf439999 Only apply CSP in production mode 6 years ago
  Thibaut Girka 48db3b3c99 Tighten CSP while allowing CDN hosts 6 years ago
  Thibaut Girka e7a72439f1 Move CSP headers to the appropriate Rails configuration 6 years ago
  Yamagishi Kazutoshi 50529cbceb Upgrade Rails to version 5.2.0 (#5898) 6 years ago