[Phpmyadmin-devel] Content security policy on demo server
Michal Čihař
michal at cihar.com
Fri May 20 16:45:09 CEST 2011
Hi
Dne Fri, 20 May 2011 12:22:09 +0200
Piotr Przybylski <piotr.prz at gmail.com> napsal(a):
> demo server should have its CSP changed to allow scripts from more
> domains. Currently Firefox 4 reports these warnings (copied from
> Firebug console):
>
> CSP: Directive "img-src http://demo.phpmyadmin.net data://*:*"
> violated by http://api.flattr.com/button/button-compact-static-100x17.png
> return typeof jQuery !== "undefine... jQuery.event.triggered !== e.type) ?
> jquery...5555394 (line2559)
> CSP: Directive "script-src http://demo.phpmyadmin.net
> www.phpmyadmin.net" violated by http://cdn1.adbard.net/js/ab2.js
> CSP: Directive "script-src http://demo.phpmyadmin.net
> www.phpmyadmin.net" violated by http://www.google-analytics.com/ga.js
> CSP: Directive "script-src http://demo.phpmyadmin.net
> www.phpmyadmin.net" violated by http://stats.cihar.com/piwik.js
I've disabled CSP on demo server.
--
Michal Čihař | http://cihar.com | http://blog.cihar.com
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 836 bytes
Desc: not available
URL: <http://lists.phpmyadmin.net/pipermail/developers/attachments/20110520/db6cd1b6/attachment.sig>
More information about the Developers
mailing list