mirror of
https://github.com/bitwarden/server.git
synced 2024-11-21 12:05:42 +01:00
[VULN-45] CSP for Icons Server (#4747)
* CSP for icon server * default to self * append
This commit is contained in:
parent
b103e8f5d9
commit
55bf815050
@ -78,6 +78,9 @@ public class Startup
|
|||||||
Public = true,
|
Public = true,
|
||||||
MaxAge = TimeSpan.FromDays(7)
|
MaxAge = TimeSpan.FromDays(7)
|
||||||
};
|
};
|
||||||
|
|
||||||
|
context.Response.Headers.Append("Content-Security-Policy", "default-src 'self'; script-src 'none'");
|
||||||
|
|
||||||
await next();
|
await next();
|
||||||
});
|
});
|
||||||
|
|
||||||
|
Loading…
Reference in New Issue
Block a user