discourse/lib/content_security_policy
Penar Musaraj 6f76479054
FEATURE: Add upgrade-insecure-requests to CSP when force_https is enabled (#13348)
If force_https is enabled all resource (including markdown preview and so on) will be accessed using HTTPS

If for any reason you attempt to link to non HTTPS reachable content content may appear broken
2021-06-10 10:53:10 +10:00
..
builder.rb DEV: Add manifest-src to CSP (#13319) 2021-06-08 09:32:31 -04:00
default.rb FEATURE: Add upgrade-insecure-requests to CSP when force_https is enabled (#13348) 2021-06-10 10:53:10 +10:00
extension.rb FEATURE: Allow theme tests to be run in production (take 2) (#12845) 2021-04-28 23:12:08 +03:00
middleware.rb Replace `base_uri` with `base_path` (#10879) 2020-10-09 12:51:24 +01:00