phorge-phorge

mirror of https://we.phorge.it/source/phorge.git synced 2025-01-11 15:21:03 +01:00

History

epriestley f31975f7a3 Don't emit Content-Security-Policy when returning a response during preflight setup checks Summary: Ref T4340. See <https://discourse.phabricator-community.org/t/core-exception-during-installation/1193/8>. If we return a response very early during setup, we may not be able to read from the environment yet. Just decline to build a "Content-Security-Policy" header in these cases. Test Plan: - Faked a preflight error (e.g., safe_mode enabled), restarted apache. - Before patch: environment error while generating CSP. - After patch: no error. - Loaded a normal page, observed an normal CSP header. Maniphest Tasks: T4340 Differential Revision: https://secure.phabricator.com/D19172		2018-03-05 06:54:01 -08:00
..
__tests__	Use PhutilClassMapQuery instead of PhutilSymbolLoader	2015-08-14 07:49:01 +10:00
aphront	Don't emit Content-Security-Policy when returning a response during preflight setup checks	2018-03-05 06:54:01 -08:00
applications	Show lint messages in deleted files on the left-hand side of the change	2018-03-04 09:14:10 -08:00
docs	Document the STMP port option	2018-02-09 14:49:46 -08:00
extensions	Add `src/extensions/` to Phabricator	2013-08-14 15:38:06 -07:00
infrastructure	Never generate file download forms which point to the CDN domain, tighten "form-action" CSP	2018-02-28 17:20:12 -08:00
view	Make Paste source code line highlighting behavior more generic	2018-03-01 12:46:36 -08:00
__phutil_library_init__.php
__phutil_library_map__.php	Reduce the cost of generating default user profile images	2018-03-01 16:53:17 -08:00