Content Security Policy: Difference between revisions
Line 15: | Line 15: | ||
https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Content-Security-Policy/form-action | https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Content-Security-Policy/form-action | ||
Redirect blocking | Redirect blocking - will disturb MediaWiki page reading after submitting a change | ||
* Firefox 57 doesn't block | * Firefox 57 doesn't block | ||
* Chrome 63 does block | * Chrome 63 does block |
Revision as of 2018-02-20T17:34:14
MediaWiki
Failing on simple lists, no bullet points shown:
- line one
- line two
PDF in Chrome
https://bugs.chromium.org/p/chromium/issues/detail?id=271452
object-source:none and PDF will not be shown in Chrome
SVG
- Content Security Policy - SVG - styles are unsafe-inline in Firefox and Edge
form-action
https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Content-Security-Policy/form-action
Redirect blocking - will disturb MediaWiki page reading after submitting a change
- Firefox 57 doesn't block
- Chrome 63 does block