melody/continuwuity
1
0
Fork 0
mirror of https://forgejo.ellis.link/continuwuation/continuwuity.git synced 2025-07-08 11:40:01 +02:00
Code Issues Projects Releases Packages Wiki Activity Actions

fix: Use correct CSP for login page

Browse source
This commit is contained in:
Jade Ellis 2025-05-10 14:22:50 +01:00 committed by nexy7574
parent 042657804b
commit 30954c7f13
No known key found for this signature in database
GPG key ID: 0FA334385D0B689F
1 changed files with 1 additions and 4 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

5
src/web/oidc/response.rs
View file

@ -40,10 +40,7 @@ impl IntoResponse for OidcResponse {
.header(header::CONTENT_TYPE, "text/html") .header(header::CONTENT_TYPE, "text/html")
.header( .header(
header::CONTENT_SECURITY_POLICY, header::CONTENT_SECURITY_POLICY,
format!( format!("default-src 'nonce-{}'; form-action 'self';", self.nonce),
"default-src 'nonce-{}'; form-action https://eon.presentmatter.one/;",
self.nonce
),
) )
.body(body.into()) .body(body.into())
.unwrap() .unwrap()