kevinveenbirkenbach/computer-playbook
1
0
Fork 0
mirror of https://github.com/kevinveenbirkenbach/computer-playbook.git synced 2025-08-15 08:30:46 +02:00
Code Issues Packages Projects Releases Wiki Activity

Implemented desktop csp policies

Browse Source
This commit is contained in:
Kevin Veen-Birkenbach 2025-08-14 11:40:09 +02:00
parent bf7b24c3ee
commit 5e00deea19
No known key found for this signature in database
GPG Key ID: 44D8F11FD62F878E
2 changed files with 7 additions and 5 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

9
filter_plugins/csp_filters.py
View File

@ -147,10 +147,11 @@ class FilterModule(object):
tokens.append('https://www.google.com')
# Allow the loading of js from the cdn
if directive == 'script-src-elem' and self.is_feature_enabled(applications, 'logout', application_id):
domain = domains.get('web-svc-cdn')[0]
tokens.append(f"{domain}")
if directive == 'script-src-elem':
if self.is_feature_enabled(applications, 'logout', application_id) or self.is_feature_enabled(applications, 'port-ui-desktop', application_id):
domain = domains.get('web-svc-cdn')[0]
tokens.append(f"{domain}")
if directive == 'frame-ancestors':
# Enable loading via ancestors
if self.is_feature_enabled(applications, 'port-ui-desktop', application_id):

3
tests/unit/filter_plugins/test_csp_filters.py
View File

@ -51,7 +51,8 @@ class TestCspFilters(unittest.TestCase):
'app2': {}
}
self.domains = {
'web-app-matomo': ['matomo.example.org']
'web-app-matomo': ['matomo.example.org'],
'web-svc-cdn': ['cdn.example.org'],
}
def test_get_csp_whitelist_list(self):