Mirror
/
nuTensor
mirror of https://github.com/geekprojects/nuTensor.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
Browse Source

this fixes #538

pull/2/head
gorhill 9 years ago
parent
8f7f184837
commit
93f963bc6c
1 changed files with 8 additions and 2 deletions
Whitespace
Show all changes Ignore whitespace when comparing lines Ignore changes in amount of whitespace Ignore changes in whitespace at EOL
Unified View
Diff Options
Show Stats Download Patch File Download Diff File
  1. 10
      src/js/traffic.js

10
src/js/traffic.js
View File

@ -392,10 +392,16 @@ var onHeadersReceived = function(details) {
// Since we are modifying an existing CSP header, we need to strip out // Since we are modifying an existing CSP header, we need to strip out
// 'report-uri' if it is present, to prevent spurious reporting of CSP // 'report-uri' if it is present, to prevent spurious reporting of CSP
// violation, and thus the leakage of information to the remote site. // violation, and thus the leakage of information to the remote site.
// https://github.com/gorhill/uMatrix/issues/538
// We will replace in-place the script-src directive with our own.
headers.push({ headers.push({
'name': 'Content-Security-Policy', 'name': 'Content-Security-Policy',
'value': cspStripReporturi(csp.replace(reScriptsrc, '') +
scriptsrc.replace(reUnsafeinline, ''))
'value': cspStripReporturi(
csp.slice(0, matches.index) +
scriptsrc.replace(reUnsafeinline, '') +
csp.slice(matches.index + scriptsrc.length)
)
}); });
return { responseHeaders: headers }; return { responseHeaders: headers };
}; };

Write Preview
Loading…
Cancel
Save