Bug 540 - improper CSP header configuration || Luminious India || AS-11183

Review Request #471 — Created Sept. 20, 2024 and submitted Sept. 30, 2024, 6:07 p.m.

Information
Owner:	jasonchou
Repository:	AG
Branch:	rel_ag_9_4_5
Bugs:	540
Depends On:
Reviewers
Groups:
People:	milliechou, timlai, weikai

Description

add object-src 'self' to CSP header configuration

Testing Done

can saw in browser :
content-security-policy:
frame-ancestors 'self'; default-src 'self' data: gap: wss: https://ssl.gstatic.com https://.duosecurity.com https://open.work.weixin.qq.com 'unsafe-eval'; style-src 'self' 'unsafe-inline'; media-src ;script-src 'self' 'unsafe-inline' 'unsafe-eval';object-src 'self' https://*.duosecurity.com

Ship it!

```
Ship It!
```

Diff:

Revision 2 (+6 -6)

Show changes

	branches/rel_ag_9_4_5/fileshare/httpd.conf
	branches/rel_ag_9_4_5/uproxy/http_proxy/http_proxy.h
	branches/rel_ag_9_4_5/uproxy/http_proxy/smanager/sec_misc.c

Ship it!

```
Ship It!
```

Ship it!

```
Ship It!
```

You have a pending review.

Review Board 5.0.5

Bug 540 - improper CSP header configuration || Luminious India || AS-11183

Diff:

Status: Closed (submitted)