Support Content Security Policy

Created on 4 September 2025, about 2 months ago

Problem/Motivation

Drupal offers the Content Security Policy module → to easily configure CSP for a site. Gin Toolbar uses an inline script in at least one place, so we need to add a nonce attribute to that script.

Proposed resolution

Add nonce attributes and append to the CSP policies where necessary.

📌 Task

Status

Active

Version

3.0

Component

Code

Created by

🇧🇪Belgium dieterholvoet Brussels

Live updates comments and jobs are added and updated live.

Merge Requests

!67Support Content Security Policy
Open
🇧🇪Belgium dieterholvoet
updated about 2 months ago

Comments & Activities

Issue created by @dieterholvoet
Merge request !67Add nonce attribute → (Open) created by dieterholvoet
Comment about 2 months ago →
🇧🇪Belgium dieterholvoet Brussels
Setting to Needs work because more changes might be necessary, don't have time to do a deep dive right now.
Pipeline finished with Success
about 2 months ago
Total: 147s
#589765

contrib.social Blog FAQ Discussions

Production build 0.71.5 2024

Support Content Security Policy

Problem/Motivation

Proposed resolution

Merge Requests

!67Support Content Security PolicyOpen

Comments & Activities

!67Support Content Security Policy
Open