Move CSP allow directive to default-src [#1124380]

Soon "allow" directive is proposed to be replaced with "default-src". Implementation needs updating.

Comments

p0deje commented 12 April 2011 at 05:09

Priority:

Normal

» Major

This actually means update implementation of CSP according to new specification:
https://dvcs.w3.org/hg/content-security-policy/raw-file/tip/csp-specific...

p0deje commented 3 July 2011 at 19:23

Status:

Active

» Closed (fixed)

Updated CSP implementation to new spec.
Resolved in release 1.1

15 June 2014 at 09:34

Commit 3ef2972 on 7.x-1.x, 8.x-1.x by p0deje:

#1124380: Update _seckti_csp() function for new spec

Commit c7cc4e5 on 7.x-1.x, 8.x-1.x by p0deje:

#1124380: Update _seckti_csp() and _seckit_admin_form() for new spec

Commit 48d7975 on 7.x-1.x, 8.x-1.x by p0deje:
```
#1124380: Updated seckit.listener.js
```

Commit d9a82df on 7.x-1.x, 8.x-1.x by p0deje:

#1124380: Updated hook_validation() and _seckit_csp() with new policy-...

Commit 9bcb711 on 7.x-1.x, 8.x-1.x by p0deje:

#1124380: Updated hook_validation() and _seckit_csp() with new policy-...

Commit 91294a2 on 7.x-1.x, 8.x-1.x by p0deje:

#1124380: Updated _seckit_get_options()

Commit 241cd4b on 7.x-1.x, 8.x-1.x by p0deje:
```
#1124380: Update to HSTS spec link
```

Commit 10f1fa0 on 7.x-1.x, 8.x-1.x by p0deje:

#1124380: Removed obsolete CSP options. Updated tests and some...

Commit 77242e0 on 7.x-1.x, 8.x-1.x by p0deje:
```
#1124380: Added seckit_update_7101().
```
Commit ff97ded on 7.x-1.x, 8.x-1.x by p0deje:
```
#1124380: Small mistake.
```
Commit e23ac20 on 7.x-1.x, 8.x-1.x by p0deje:
```
#1124380: Small mistake.
```
Commit 994f33c on 7.x-1.x, 8.x-1.x by p0deje:
```
#1124380: Small mistake.
```