Sha256: e915c7e96ba9bda44dccf4d974f28a646170802eba06b760f253c56fd5a9a3e8
Contents?: true
Size: 633 Bytes
Versions: 1
Compression:
Stored size: 633 Bytes
Contents
# frozen_string_literal: true # Define an application-wide content security policy. # # https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Content-Security-Policy. Rails.application.config.content_security_policy do |policy| policy.default_src(:none) policy.connect_src(:self, :https) policy.script_src(:self, :https) policy.style_src(:self, Rails.env.development? ? :unsafe_inline : :https) policy.form_action(:self, :https) end # If you are using UJS then enable automatic nonce generation Rails.application.config.content_security_policy_nonce_generator = proc do SecureRandom.base64(16) end
Version data entries
1 entries across 1 versions & 1 rubygems
| Version | Path |
|---|---|
| practical-pig-1.0.0 | lib/template/config/initializers/content_security_policy.rb |