Re: [Phpmyadmin-devel] CSP and new version check

4 Mar 2011


      Hi
Dne Thu, 3 Mar 2011 12:44:59 +0100
Piotr Przybylski piotr.prz@gmail.com napsal(a):
...
Version check fails with current trunk and browsers supporting Content
Security Policy (eg. FF 4.0b12):
"CSP: Directive "allow http://localhost" violated by
http://www.phpmyadmin.net/home_page/version.js"
We should specify script-src with 'self' and www.phpmyadmin.net as
allowed script sources.
And we probably need img-src data as well in the policy for charts.
Looking into this and will commit fix soon.
-- 
    Michal Čihař | http://cihar.com | http://blog.cihar.com

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

2005

2004

2003

2002

2001

Re: [Phpmyadmin-devel] CSP and new version check