Contrib.social

Store each CSP rule on a seperate line in config

Open on Drupal.org β†’
Created on 17 April 2024, 2 months ago

Problem/Motivation

When performing git diffs on seckit.setting it's very hard to see changes when all the lines are so long.
If each item was on it's own line it would be easy to see additions, deletions and changes.
It would also be much easier to spot any duplicate rules.

Steps to reproduce

Current config example:

default-src: '''self'' blob: *.local-d8.my127.site *.brightcove.net *.brightcove.com *.boltdns.net *.typekit.net *.nr-data.net *.buyatab.com *.mysite.com *.quantummetric.com cloud.typography.com  ''unsafe-inline'' ''unsafe-eval'''

Suggested config example:

default-src:
  - '''self'''
  - 'blob:'
  - '*.local-d8.my127.site'
  - '*.brightcove.net'
  - '*.brightcove.com'
  - '*.boltdns.net'
  - '*.typekit.net'
  - '*.nr-data.net'
  - '*.buyatab.com'
  - '*.mysite.com'
  - '*.quantummetric.com'
  - 'cloud.typography.com'
  - '''unsafe-inline'''
  - '''unsafe-eval'''

Proposed resolution

Update yaml config sample.

✨ Feature request
Status

Active

Version

2.0

Component

Code

Created by

πŸ‡¬πŸ‡§United Kingdom dahousecat

Live updates comments and jobs are added and updated live.
Sign in to follow issues

Comments & Activities

contrib.social Blog FAQ Discussions
Production build 0.69.0 2024