I am trying to create a vary basic .rb plugin (based on the now obsolete in chrome) discourse-allowall which will merge the CSP header to the default ones but cant get it to work. The below does not seem to do it. Rails.application.config.action_dispatch.default_headers.merge!({'Content-Security-Po…

Adding CSP header

Falco (Falco) Mars 23, 2021, 12:17 3

1 « J'aime »

Sujet		Réponses	Vues
Add own CSP headers Support	5	406	Juin 16, 2023
Adding HTTP Headers to Plugin in Development Dev	3	858	Mai 18, 2020
And invalid response header is being set from embed controller Support	4	700	Mars 27, 2021
CSP Frame Ancestors enabled by default Announcements	4	1635	Décembre 20, 2023
Allowed iframes whitelist not working - 'x-frame-options: SAMEORIGIN' Support	4	855	Juin 30, 2022