Merge branch 'uploads-csp-changes' into 'develop' - pleroma - My custom branche(s) on git.pleroma.social/pleroma/pleroma

commit: ad8630b95a691d01ec49344fd1a7578860728d63
parent: 96eae6299544e8768459f16225249a1e6e14e2f0
Author: rinpatch <rinpatch@sdf.org>
Date:   Wed, 15 Apr 2020 10:15:15 +0000

Merge branch 'uploads-csp-changes' into 'develop'

Uploads: Sandbox them in the CSP.

See merge request pleroma/pleroma!2389
Diffstat:
M lib/pleroma/plugs/uploaded_media.ex 1 +

1 file changed, 1 insertion(+), 0 deletions(-)
diff --git a/lib/pleroma/plugs/uploaded_media.ex b/lib/pleroma/plugs/uploaded_media.ex
@@ -41,6 +41,7 @@ defmodule Pleroma.Plugs.UploadedMedia do
         conn ->
           conn
       end
+      |> merge_resp_headers([{"content-security-policy", "sandbox"}])
 
     config = Pleroma.Config.get(Pleroma.Upload)