Anna.info website technical test: Difference between revisions

From annawiki
Line 28: Line 28:
The "style-src 'unsafe-inline'" prevents getting +5 points. Inline CSS is used  
The "style-src 'unsafe-inline'" prevents getting +5 points. Inline CSS is used  
*for getting 100/100 on Goolge speed test, which does not seem to be possible with external CSS
*for getting 100/100 on Goolge speed test, which does not seem to be possible with external CSS
*to to CSS marking in MediaWiki, e.g. cells in tables
*to do CSS marking in MediaWiki, e.g. cells in tables


==Other==
==Other==
*https://www.heise.de/forum/heise-online/News-Kommentare/heise-online-HTTPS-auch-fuer-Mobilgeraete/X-XSS-Protection-X-Content-Type-Options-Content-Security-Policy-nicht-vergessen/posting-29747747/show/
*https://www.heise.de/forum/heise-online/News-Kommentare/heise-online-HTTPS-auch-fuer-Mobilgeraete/X-XSS-Protection-X-Content-Type-Options-Content-Security-Policy-nicht-vergessen/posting-29747747/show/

Revision as of 2020-12-16T16:16:55

Links

Issues

Content-Security-Policy	default-src 'self'; style-src 'self' 'unsafe-inline'

The "style-src 'unsafe-inline'" prevents getting +5 points. Inline CSS is used

  • for getting 100/100 on Goolge speed test, which does not seem to be possible with external CSS
  • to do CSS marking in MediaWiki, e.g. cells in tables

Other