github/hedgedoc
1
0
Fork 0
mirror of https://github.com/hedgedoc/hedgedoc.git synced 2025-02-12 14:51:26 +00:00
Code Issues Projects Releases Packages Wiki Activity
hedgedoc/lib
History
David Mehren 0b61f48129
Fix upgradeInsecureRequests CSP directive 
The `upgradeInsecureRequests` option of Helmets CSP middleware
was a boolean in Helmet 3, but with Helmet 4,
everything changed to lists.
This commit adjusts the addUpgradeUnsafeRequestsOptionTo
function accordingly.

Closes #1221

See also https://github.com/helmetjs/helmet/tree/v4.6.0/middlewares/content-security-policy

Signed-off-by: David Mehren <git@herrmehren.de>
2021-05-04 11:10:53 +02:00
..
config
migrations
models Remove unneeded polyfill 2021-04-26 17:05:20 +02:00
ot
web ImageRouterImgur: Replace imgur library with note-fetch request 2021-04-22 21:23:27 +02:00
workers
csp.js Fix upgradeInsecureRequests CSP directive 2021-05-04 11:10:53 +02:00
errors.js
history.js
letter-avatars.js
logger.js
prometheus.js Add custom prometheus metrics 2021-04-25 20:06:56 +02:00
realtime.js
response.js
utils.js