ajurna/cbwebreader
1
0
Fork 0
mirror of https://github.com/ajurna/cbwebreader.git synced 2025-12-06 06:17:17 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity

tighten security

Browse Source
This commit is contained in:
Ajurna
2022-04-02 08:37:47 +01:00
parent 8f0eb5d23c
commit 82981482df
7 changed files with 171 additions and 151 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
cbreader/settings/base.py
View File

@@ -157,7 +157,7 @@ CSP_FONT_SRC = ("'self'",)
CSP_SCRIPT_SRC = ("'self'", "'sha256-khnq7MWUoC3fJlH98ZjaCbVOvyd5+vnfVyue/ca55JA='")
CSP_CONNECT_SRC = ("'self'",)
CSP_INCLUDE_NONCE_IN = ['script-src']
CSP_SCRIPT_SRC_ATTR = ("'self'", "'unsafe-inline'")
CSP_SCRIPT_SRC_ATTR = ("'self'",)# "'unsafe-inline'")
PERMISSIONS_POLICY = {
"accelerometer": [],
@@ -179,6 +179,8 @@ PERMISSIONS_POLICY = {
SESSION_COOKIE_HTTPONLY = True
SESSION_COOKIE_SECURE = True
SESSION_COOKIE_SAMESITE = 'Strict'
CSRF_COOKIE_HTTPONLY = True
CSRF_COOKIE_SECURE = True
CSRF_COOKIE_SAMESITE = 'Strict'
SECURE_PROXY_SSL_HEADER = ('HTTP_X_FORWARDED_PROTO', 'https')