Version check fails with current trunk and browsers supporting Content Security Policy (eg. FF 4.0b12): "CSP: Directive "allow http://localhost" violated by http://www.phpmyadmin.net/home_page/version.js"
We should specify script-src with 'self' and www.phpmyadmin.net as allowed script sources.
Hi
Dne Thu, 3 Mar 2011 12:44:59 +0100 Piotr Przybylski piotr.prz@gmail.com napsal(a):
Version check fails with current trunk and browsers supporting Content Security Policy (eg. FF 4.0b12): "CSP: Directive "allow http://localhost" violated by http://www.phpmyadmin.net/home_page/version.js"
We should specify script-src with 'self' and www.phpmyadmin.net as allowed script sources.
And we probably need img-src data as well in the policy for charts.
Looking into this and will commit fix soon.
-
Michal Čihař -
Piotr Przybylski