Pytition icon indicating copy to clipboard operation
Pytition copied to clipboard
verified publisher icon pytition

Security: enable Content-Security-Policy header

Open fallen opened this issue 6 years ago • 0 comments

This is not ready yet as I didn't find yet a mean to use the style-src: 'unsafe-inline' CSP attribute for the petition detail template which contains TinyMCE content with lots of inline style="" attributes

So far to make progress on this PR I need help on these points:

  • [x] https://github.com/mozilla/django-csp/issues/139
  • [ ] https://github.com/mozilla/django-csp/issues/119

fallen avatar Dec 21 '19 22:12 fallen