diff options
author | Rigel Kent <par@rigelk.eu> | 2018-12-13 09:49:45 +0100 |
---|---|---|
committer | Chocobozzz <me@florianbigard.com> | 2018-12-13 09:49:45 +0100 |
commit | 5e755fff9d70a7fd3c4f85bb524f1b774dd85b25 (patch) | |
tree | 699a0724de91f4151ec7d67b700f5b7736a78e45 /client/src/environments | |
parent | 9ecac97be024cf2277872986950d7eec85cbc76e (diff) | |
download | PeerTube-5e755fff9d70a7fd3c4f85bb524f1b774dd85b25.tar.gz PeerTube-5e755fff9d70a7fd3c4f85bb524f1b774dd85b25.tar.zst PeerTube-5e755fff9d70a7fd3c4f85bb524f1b774dd85b25.zip |
add Content Security Policy (#1252)
* add Content Security Policy
* remove reflect-metadata on production builds to get rid of unsafe-eval
* fix baseCSP usage
* add SRI to CSP
* add blob: to media-src
* remove SRI
* CSP set to reportOnly
* adding data: to connect-src CSP
* remove block-all-mixed-content
* add report-uri support
Diffstat (limited to 'client/src/environments')
-rw-r--r-- | client/src/environments/environment.ts | 7 |
1 files changed, 7 insertions, 0 deletions
diff --git a/client/src/environments/environment.ts b/client/src/environments/environment.ts index 5bb6f4b34..1ea483554 100644 --- a/client/src/environments/environment.ts +++ b/client/src/environments/environment.ts | |||
@@ -2,6 +2,13 @@ | |||
2 | // `ng build --env=prod` then `environment.prod.ts` will be used instead. | 2 | // `ng build --env=prod` then `environment.prod.ts` will be used instead. |
3 | // The list of which env maps to which file can be found in `.angular-cli.json`. | 3 | // The list of which env maps to which file can be found in `.angular-cli.json`. |
4 | 4 | ||
5 | // Reflect.metadata polyfill is only needed in the JIT/dev mode. | ||
6 | // | ||
7 | // In order to load these polyfills early enough (before app code), polyfill.ts imports this file to | ||
8 | // to change the order in the final bundle. | ||
9 | import 'core-js/es6/reflect' | ||
10 | import 'core-js/es7/reflect' | ||
11 | |||
5 | export const environment = { | 12 | export const environment = { |
6 | production: false, | 13 | production: false, |
7 | hmr: false, | 14 | hmr: false, |