admin/Database
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

BLST#68301 S(csp_header) aangepast

Browse Source 
svn path=/Database/trunk/; revision=53138
This commit is contained in:
Koen Reefman
2021-09-23 19:47:40 +00:00
parent fc1ec24e52
commit 99c642bf8a
1 changed files with 1 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
FAC/FAC_SET.SRC
View File

@@ -174,7 +174,7 @@ DEFINE_SETTING('FAC', 0001, 'WEB_FACTAB', 'allowedLinkRegex'
DEFINE_SETTING('FAC', 0001, 'WEB_FACTAB', 'auto_https' , 'number' , '3' , '0=not https, 1=http redirects to https, (3=also all cookies ;Secure)')
DEFINE_SETTING('FAC', 0001, 'WEB_FACTAB', 'fac_html_strictness' , 'number' , '0' , '0=allow html in message, res-room description, flex-labels, 1=do not allow (strict, more secure)')
DEFINE_SETTING('FAC', 0001, 'WEB_FACTAB', 'cal_showOn' , 'string' , 'button' , '''button'' or ''focus'' or ''both''')
DEFINE_SETTING('FAC', 0001, 'WEB_FACTAB', 'csp_header' , 'string' , 'default-src ''self''; script-src ''self'' ''unsafe-eval'' ''unsafe-inline''; script-src-elem ''self'' ''unsafe-inline''; style-src ''self'' ''unsafe-inline''; frame-src ''self'' mailto: tel: callto:; img-src ''self'' data:; block-all-mixed-content;', 'Content-Security-Policy header')
DEFINE_SETTING('FAC', 0001, 'WEB_FACTAB', 'csp_header' , 'string' , 'default-src ''self''; script-src ''self'' ''unsafe-eval'' ''unsafe-inline''; style-src ''self'' ''unsafe-inline''; frame-src ''self'' mailto: tel: callto:; img-src ''self'' data:; block-all-mixed-content;', 'Content-Security-Policy header')
DEFINE_SETTING('FAC', 0001, 'WEB_FACTAB', 'referrer_policy_header' , 'string' , 'strict-origin-when-cross-origin', 'Referrer-Policy header (future use)')
DEFINE_SETTING('FAC', 0001, 'WEB_FACTAB', 'cssenvcust' , 'string' , '' , 'Custom css environment overrules')
DEFINE_SETTING('FAC', 0001, 'WEB_FACTAB', 'csstemplate' , 'json' , '{}' , 'Color scheme.')