overleaf

mirror of https://github.com/overleaf/overleaf.git synced 2024-09-16 02:52:31 -04:00

History

Jakob Ackermann 224edddad4 [web] set a default, strict CSP on ALL endpoints (#6271 ) * Remove use of CSP_PERCENTAGE * Move header calculation earlier * Set a default policy and add comments * Apply the CSP header to all responses * Enable CSP in dev environment * [web] set a default, strict CSP on ALL endpoints * [misc] enable CSP in dev-env * Only build the default policy once * Update docker-compose.yml * [web] webpack: set default CSP header on webpack assets This aligns the webpack dev-server with production in nocdn=true mode. Co-authored-by: Alf Eaton <alf.eaton@overleaf.com> GitOrigin-RevId: 088a6082ad21c5b3f229887ba0ab3eca8d0528cd		2022-03-18 09:03:01 +00:00
..
chat	Merge pull request #6996 from overleaf/tm-expired-project-chat	2022-03-17 09:03:41 +00:00
clsi	Merge pull request #6962 from overleaf/jpa-clsi-tweak-health-check	2022-03-03 09:03:19 +00:00
contacts	Merge pull request #6542 from overleaf/jpa-em-code-sharing-workspaces	2022-02-16 11:31:07 +00:00
docstore	Merge pull request #7004 from overleaf/ab-docstore-max-request-size-config	2022-03-07 09:03:04 +00:00
document-updater	Merge pull request #6542 from overleaf/jpa-em-code-sharing-workspaces	2022-02-16 11:31:07 +00:00
filestore	[object-persistor] use forked `fast-crc32c` dependency (#6945 )	2022-03-11 09:03:16 +00:00
git-bridge	Merge pull request #6969 from overleaf/msm-fix-log-debug	2022-03-08 09:03:17 +00:00
notifications	Merge pull request #6542 from overleaf/jpa-em-code-sharing-workspaces	2022-02-16 11:31:07 +00:00
real-time	Merge pull request #6542 from overleaf/jpa-em-code-sharing-workspaces	2022-02-16 11:31:07 +00:00
spelling	[spelling] prune unused aspell packages (#6944 )	2022-03-02 09:02:47 +00:00
track-changes	Merge pull request #6542 from overleaf/jpa-em-code-sharing-workspaces	2022-02-16 11:31:07 +00:00
web	[web] set a default, strict CSP on ALL endpoints (#6271 )	2022-03-18 09:03:01 +00:00