mirror of
https://github.com/nextcloud/server.git
synced 2026-04-15 22:11:17 -04:00
fix(videoverification): Remove CSP wildcard for video verification
spreed does it via AddContentSecurityPolicyEvent event by now Signed-off-by: Joas Schilling <coding@schilljs.com>
This commit is contained in:
Joas Schilling
parent
a119716a7d
commit
dc529fa86d
1 changed files with 3 additions and 28 deletions
|
|
@ -7,7 +7,6 @@
|
|||
*/
|
||||
namespace OCA\Files_Sharing\Controller;
|
||||
|
||||
use OC\Security\CSP\ContentSecurityPolicy;
|
||||
use OC\ServerNotAvailableException;
|
||||
use OCA\DAV\Connector\Sabre\PublicAuth;
|
||||
use OCA\FederatedFileSharing\FederatedShareProvider;
|
||||
|
|
@ -93,15 +92,7 @@ class ShareController extends AuthPublicShareController {
|
|||
|
||||
$this->eventDispatcher->dispatchTyped(new BeforeTemplateRenderedEvent($this->share, BeforeTemplateRenderedEvent::SCOPE_PUBLIC_SHARE_AUTH));
|
||||
|
||||
$response = new TemplateResponse('core', 'publicshareauth', $templateParameters, 'guest');
|
||||
if ($this->share->getSendPasswordByTalk()) {
|
||||
$csp = new ContentSecurityPolicy();
|
||||
$csp->addAllowedConnectDomain('*');
|
||||
$csp->addAllowedMediaDomain('blob:');
|
||||
$response->setContentSecurityPolicy($csp);
|
||||
}
|
||||
|
||||
return $response;
|
||||
return new TemplateResponse('core', 'publicshareauth', $templateParameters, 'guest');
|
||||
}
|
||||
|
||||
/**
|
||||
|
|
@ -112,15 +103,7 @@ class ShareController extends AuthPublicShareController {
|
|||
|
||||
$this->eventDispatcher->dispatchTyped(new BeforeTemplateRenderedEvent($this->share, BeforeTemplateRenderedEvent::SCOPE_PUBLIC_SHARE_AUTH));
|
||||
|
||||
$response = new TemplateResponse('core', 'publicshareauth', $templateParameters, 'guest');
|
||||
if ($this->share->getSendPasswordByTalk()) {
|
||||
$csp = new ContentSecurityPolicy();
|
||||
$csp->addAllowedConnectDomain('*');
|
||||
$csp->addAllowedMediaDomain('blob:');
|
||||
$response->setContentSecurityPolicy($csp);
|
||||
}
|
||||
|
||||
return $response;
|
||||
return new TemplateResponse('core', 'publicshareauth', $templateParameters, 'guest');
|
||||
}
|
||||
|
||||
/**
|
||||
|
|
@ -131,15 +114,7 @@ class ShareController extends AuthPublicShareController {
|
|||
|
||||
$this->eventDispatcher->dispatchTyped(new BeforeTemplateRenderedEvent($this->share, BeforeTemplateRenderedEvent::SCOPE_PUBLIC_SHARE_AUTH));
|
||||
|
||||
$response = new TemplateResponse('core', 'publicshareauth', $templateParameters, 'guest');
|
||||
if ($this->share->getSendPasswordByTalk()) {
|
||||
$csp = new ContentSecurityPolicy();
|
||||
$csp->addAllowedConnectDomain('*');
|
||||
$csp->addAllowedMediaDomain('blob:');
|
||||
$response->setContentSecurityPolicy($csp);
|
||||
}
|
||||
|
||||
return $response;
|
||||
return new TemplateResponse('core', 'publicshareauth', $templateParameters, 'guest');
|
||||
}
|
||||
|
||||
/**
|
||||
|
|
|
|||
Loading…
Reference in a new issue