[4.0] System - HTTP Headers - Write headers to the configuration file#24674
[4.0] System - HTTP Headers - Write headers to the configuration file#24674wilsonge merged 34 commits intojoomla:4.0-devfrom
Conversation
…atic in all cases
…ms into 40_write_static_headers
|
@wilsonge I would like to add yet another feature that sets the |
|
And I have been asked by @SniperSister to work on an approach for hash based whitlisting too, wich would massive conflict with this PR here too. |
|
Any update @wilsonge ? |
|
|
||
| $this->app->setHeader( | ||
| 'Content-Security-Policy-Report-Only', | ||
| 'content-security-policy-report-only', |
There was a problem hiding this comment.
Don't we want to set the headers in the app with the correct cases?
There was a problem hiding this comment.
Each header field consists of a name followed by a colon (":") and the field value. Field names are case-insensitive.
https://www.w3.org/Protocols/rfc2616/rfc2616-sec4.html#sec4.2
I personally would go for the the lowercase version as it is now.
|
Thanks! |
|
Great, thanks 🎉 |
|
This should not have been merged #25713 (comment) |
|
Removing the documentation required label as this feature is about to be removed here: #25754 |
Summary of Changes
Write headers to the configuration file(source [FEATURE] Write static headers to to the server config file zero-24/plg_system_httpheader#6)Testing Instructions
Test
Write headers to the configuration fileWrite headers to the configuration fileTest the CSP Component Integration
{nonce}has been replaced by the actual nonceExpected result
The static headers are written to the respective server config file
Actual result
This option does not exists
Documentation Changes Required
https://docs.joomla.org/J4.x:Http_Header_Management