Project

General

Profile

Actions
Copy link

Bug #100905

closed

Epic #87417: Integrate proper Content Security Policy (CSP) handling

Feature #99499: Introduce Content Security Policy handling

Deny base-uri and object-src per default

Added by Oliver Hader 11 months ago. Updated 8 months ago.

Status:
Resolved
Priority:
Should have
Assignee:
Oliver Hader
Category:
Security
Target version:
-
Start date:
2023-05-20
Due date:
% Done:

0%

Estimated time:
TYPO3 Version:
12
PHP Version:
Tags:
Complexity:
Is Regression:
Sprint Focus:

Description

new MutationCollection(
    new Mutation(MutationMode::Set, Directive::ObjectSrc, SourceKeyword::none),
    new Mutation(MutationMode::Set, Directive::BaseUri, SourceKeyword::none),
)

Related issues 1 (0 open1 closed)

Is duplicate of TYPO3 Core - Bug #101477: Extend CSP directives and sourcesResolvedOliver Hader2023-07-28

Actions
Actions
Copy link
 #1

Updated by Oliver Hader 8 months ago

  • Is duplicate of Bug #101477: Extend CSP directives and sources added
Actions
Copy link
 #2

Updated by Oliver Hader 8 months ago

  • Status changed from New to Resolved

→ done with #101477

Actions
Copy link

Also available in: Atom PDF