projects / akkoma / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 8f6d428) | patch
HTTP Security plug: rewrite &csp_string/0
authorrinpatch <rinpatch@sdf.org>
Wed, 27 May 2020 17:27:30 +0000 (20:27 +0300)
committerrinpatch <rinpatch@sdf.org>
Wed, 27 May 2020 18:31:47 +0000 (21:31 +0300)
commit455a402c8a967b3a234c836b0574c4f011860d43
treead96f96064a9a37e96068ad4d424b0b16343720ftree | snapshot
parent8f6d428880721d4b0151991e7943706b70ab8005commit | diff
HTTP Security plug: rewrite &csp_string/0

- Directives are now separated with ";" instead of " ;",
according to https://www.w3.org/TR/CSP2/#policy-parsing
the space is optional
- Use an IO list, which at the end gets converted to a binary as
opposed to ++ing a bunch of arrays with binaries together and joining
them to a string. I doubt it gives any significant real world advantage,
but the code is cleaner and now I can sleep at night.
- The static part of csp is pre-joined to a single binary at compile time.
Same reasoning as the last point.
lib/pleroma/plugs/http_security_plug.ex diff | blob | history
test/plugs/http_security_plug_test.exs diff | blob | history
Fork of https://akkoma.dev/AkkomaGang/akkoma.git