overleaf/services/web/app/views/user/settings
Alf Eaton a5637651b5 Add Content-Security-Policy header (#3783)
* Add Content-Security-Policy header
* Add nonce attribute to script tags
* Use source-map for webpack devtool
* Add ng-csp attribute when CSP is enabled
* Allow overriding CSP settings with environment variables
* Hook into render and allow routes to disable the CSP header

GitOrigin-RevId: a873736a3514198165f1b2f1e18d002b65f20d30
2021-03-26 03:04:55 +00:00
..
user-affiliations.pug Merge pull request #3766 from overleaf/jpa-xss-8 2021-03-18 03:04:38 +00:00
user-oauth.pug Add Content-Security-Policy header (#3783) 2021-03-26 03:04:55 +00:00