mirror/Part-DB.Part-DB-server
1
0
Fork 1
mirror of https://github.com/Part-DB/Part-DB-server.git synced 2025-07-13 11:54:32 +02:00
Code Issues Projects Releases Packages Wiki Activity Actions 5

Disable content security policy in development env, as symfony profiler uses a lot of inline js

Browse source
This commit is contained in:
Jan Böhmer 2022-08-28 18:40:16 +02:00
parent 4ba58cc621
commit 99b25fb293
1 changed files with 6 additions and 0 deletions
Download patch file Download diff file Expand all files Collapse all files

6
config/packages/nelmio_security.yaml
View file

@ -58,3 +58,9 @@ nelmio_security:
- 'data:' - 'data:'
block-all-mixed-content: true # defaults to false, blocks HTTP content over HTTPS transport block-all-mixed-content: true # defaults to false, blocks HTTP content over HTTPS transport
# upgrade-insecure-requests: true # defaults to false, upgrades HTTP requests to HTTPS transport # upgrade-insecure-requests: true # defaults to false, upgrades HTTP requests to HTTPS transport
when@dev:
# disables the Content-Security-Policy header
nelmio_security:
csp:
enabled: false