Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Stop usage of \OCP\AppFramework\Http\EmptyContentSecurityPolicy::allowInlineScript #2979

Closed
Tracked by #38642
ChristophWurst opened this issue Jun 1, 2023 · 1 comment · Fixed by #2982
Closed
Tracked by #38642

Stop usage of \OCP\AppFramework\Http\EmptyContentSecurityPolicy::allowInlineScript #2979

ChristophWurst opened this issue Jun 1, 2023 · 1 comment · Fixed by #2982
Labels
3. to review Ready to be reviewed bug Something isn't working technical debt

Comments

@ChristophWurst
Copy link
Member

Describe the bug

\OCP\AppFramework\Http\EmptyContentSecurityPolicy::allowInlineScript was deprecated in Nextcloud 10. It will be removed soon.

To Reproduce

See code

Expected behavior

Good code

Screenshots

image

Client details:

  • OS: [e.g. iOS]
  • Browser [e.g. chrome, safari]
  • Version [e.g. 22]
  • Device: [e.g. iPhone6, desktop]

Server details

Operating system:

Web server:

Database:

PHP version:

Nextcloud version:

Version of the richdocuments app

Version of Collabora Online

Logs

Nextcloud log (data/nextcloud.log)

Insert your Nextcloud log here

Browser log

Insert your browser log here, this could for example include:

a) The javascript console log
b) The network log
c) ...
@ChristophWurst ChristophWurst added bug Something isn't working 1. to develop Waiting for a developer technical debt labels Jun 1, 2023
@juliusknorr
Copy link
Member

Preliminary work should have been done with #2258

@juliusknorr juliusknorr mentioned this issue Jun 2, 2023
Merged
3 tasks
@ChristophWurst ChristophWurst added 3. to review Ready to be reviewed and removed 1. to develop Waiting for a developer labels Jun 2, 2023
@ChristophWurst ChristophWurst mentioned this issue Jun 5, 2023
Merged
5 tasks
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
3. to review Ready to be reviewed bug Something isn't working technical debt
Projects
None yet
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

chore(CSP): Remove deprecated inline js CSP nextcloud/richdocuments
2 participants
@ChristophWurst @juliusknorr