Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

#395 - CSP header #412

Merged
merged 6 commits into from
Jul 31, 2024
Merged

#395 - CSP header #412

merged 6 commits into from
Jul 31, 2024

Conversation

kamilpiech97
Copy link
Member

@kamilpiech97 kamilpiech97 commented Mar 26, 2024
edited
Loading

Should close #395.
Now, when I checked https://beta.toby.blumilk.pl/. Our website has A+ score.
On production website should be the same after deploy.
image

@krzysztofrewak
Copy link
Member

@kamilpiech97, are you going to open it?

@kamilpiech97
Copy link
Member Author

I think so, I wanna check that and I will open.

@kamilpiech97 kamilpiech97 marked this pull request as ready for review July 31, 2024 05:59
@kamilpiech97 kamilpiech97 requested a review from a team as a code owner July 31, 2024 05:59
@kamilpiech97 kamilpiech97 requested a review from mtracz July 31, 2024 05:59
@kamilpiech97 kamilpiech97 merged commit 874b110 into main Jul 31, 2024
6 checks passed
@kamilpiech97 kamilpiech97 deleted the #395-csp-header branch July 31, 2024 07:10
mtracz
mtracz reviewed Jul 31, 2024
View reviewed changes
resources/views/app.blade.php
@@ -3,6 +3,9 @@
<head>
<meta charset="utf-8"/>
<meta name="viewport" content="width=device-width, initial-scale=1.0, maximum-scale=1.0"/>
@if (app()->environment('production'))
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I think it should check if app is in non local environment. Because on beta environment we wont be able to detect any issues related to CSP header.

Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

yep, sure.
I will fix that

@kamilpiech97 kamilpiech97 mentioned this pull request Jul 31, 2024
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@mtracz mtracz mtracz left review comments

@krzysztofrewak krzysztofrewak krzysztofrewak approved these changes

@EwelinaSkrzypacz EwelinaSkrzypacz EwelinaSkrzypacz approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

Setup Content Security Policy header
4 participants
@kamilpiech97 @krzysztofrewak @mtracz @EwelinaSkrzypacz