kevinveenbirkenbach/computer-playbook
1
0
Fork 0
mirror of https://github.com/kevinveenbirkenbach/computer-playbook.git synced 2025-08-29 15:06:26 +02:00
Code Issues Packages Projects Releases Wiki Activity

Solved buggies

Browse Source
This commit is contained in:
Kevin Veen-Birkenbach
2025-05-20 20:46:29 +02:00
parent 49937f6ecc
commit 9d400911f4
4 changed files with 6 additions and 7 deletions
Download Patch File Download Diff File Expand all files Collapse all files

5
filter_plugins/csp_filters.py
View File

@@ -126,10 +126,9 @@ class FilterModule(object):
self.is_feature_enabled(applications, 'portfolio_iframe', application_id)
and directive == 'frame-ancestors'
):
domain = domains.get('portfolio')[0] # e.g. "sub.example.com" or "example.com"
# Extract the second-level + top-level domain and prefix with "*."
domain = domains.get('portfolio')[0]
sld_tld = ".".join(domain.split(".")[-2:]) # yields "example.com"
tokens.append(f"*.{sld_tld}") # yields "*.example.com"
tokens.append(f"{sld_tld}") # yields "*.example.com"
# whitelist
tokens += self.get_csp_whitelist(applications, application_id, directive)