We read every piece of feedback, and take your input very seriously.
To see all available qualifiers, see our documentation.
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
When running Magento 2.3.6 with the Magento_CSP module enabled the external resources break because there is no csp_whitelist.xml defined.
Is this something you are planning on adding support for?
Should be as simple as
<?xml version="1.0" encoding="UTF-8"?> <csp_whitelist xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:noNamespaceSchemaLocation="urn:magento:module:Magento_Csp:etc/csp_whitelist.xsd"> <policies> <policy id="img-src"> <values> <value id="mailchiimp_logo" type="host">ebizmarts-website.s3.amazonaws.com</value> </values> </policy> </policies> </csp_whitelist>
Docs: https://devdocs.magento.com/guides/v2.4/extension-dev-guide/security/content-security-policies.html
I haven't extensively gone through the module and found all external resources, the above is an example csp to get the ball rolling.
The text was updated successfully, but these errors were encountered:
add CSP control #1097 for magento 2.4
e19fa3f
gonzaloebiz
No branches or pull requests
When running Magento 2.3.6 with the Magento_CSP module enabled the external resources break because there is no csp_whitelist.xml defined.
Is this something you are planning on adding support for?
Should be as simple as
Docs: https://devdocs.magento.com/guides/v2.4/extension-dev-guide/security/content-security-policies.html
I haven't extensively gone through the module and found all external resources, the above is an example csp to get the ball rolling.
The text was updated successfully, but these errors were encountered: