colin
/
bookstack
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
bookstack/app/Util
History
Dan Brown 856fca8289
Updated CSP with frame-src rules 
- Configurable via 'ALLOWED_IFRAME_SOURCES' .env option.
- Also updated how CSP rules are set, with a single header being used
  instead of many.
- Also applied CSP rules to HTML export outputs.
- Updated tests to cover.

For #3314
 		2022-03-07 14:27:41 +00:00
..
CspService.php Updated CSP with frame-src rules 2022-03-07 14:27:41 +00:00
HtmlContentFilter.php Done a round of phpstan fixes 2021-11-06 00:32:01 +00:00
HtmlNonceApplicator.php Altered the parsing of custom head to prevent htmlentities on content 2021-09-12 16:19:17 +01:00
WebSafeMimeSniffer.php Added detection and thumbnail bypass for apng images 2022-01-04 13:10:35 +00:00