BookStack/app/Util
Dan Brown 856fca8289
Updated CSP with frame-src rules
- Configurable via 'ALLOWED_IFRAME_SOURCES' .env option.
- Also updated how CSP rules are set, with a single header being used
  instead of many.
- Also applied CSP rules to HTML export outputs.
- Updated tests to cover.

For #3314
2022-03-07 14:27:41 +00:00
..
CspService.php Updated CSP with frame-src rules 2022-03-07 14:27:41 +00:00
HtmlContentFilter.php
HtmlNonceApplicator.php
WebSafeMimeSniffer.php Added detection and thumbnail bypass for apng images 2022-01-04 13:10:35 +00:00