echelon/i2p.i2p
1
0
Fork 0
forked from I2P_Developers/i2p.i2p
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
a47f6d1b2ef4198946b4b564fb33da36df2f4ff9
i2p.i2p/apps/routerconsole/jsp/csp-unsafe.jsi
zzz fa9f60bcd9 Console, webapps: CSP improvements 
i2ptunnel, susidns: Add headers.jsi
Console: Remove onload and use nonce for inline scripts where able
Version remaining js links
2019-12-25 12:18:00 +00:00

5 lines
309 B
Plaintext
Raw Blame History

<%
// Add this AFTER css.jsi if there's any onclick attributes in the page
response.setHeader("Content-Security-Policy", "default-src 'self'; style-src 'self' 'unsafe-inline'; script-src 'self' 'unsafe-inline'; form-action 'self'; frame-ancestors 'self'; object-src 'none'; media-src 'none'");
%>
Reference in New Issue View Git Blame Copy Permalink