-
With MS Edge I'm getting a CSP error where the blocked URI is BlockedUri="ms-appx-web://"
I've try add ms-appx-web: to the custom sources but i'm getting an exception.
From what I've seen the pr…
-
Might be a bug not sure. If you set the Default Source to Self() then set the Script Source to Self() and add Custom Source it ignores the NONCE settings. As a work-around I was able to just use Custo…
-
Issue with the getting nonce attribute in CSP header
Application is in .Net Framework 3.5
NWebSec version is 4.0
Added below Configuration
```
…
-
Just FYI, not sure if this project is still maintained, but it looks like the SSL cert expired in Feb of this year for nwebsec.com
-
Is there plan to support ASP.NET Core 3 for this library? I haven't seen any news or incentices so I am asking :-)
DOMZE updated
4 years ago
-
I added the dependency to use the XFrameOptions Attribute.
Before adding the dependencies, all the relevant CORS headers were being sent with each response.
The issue came up when the following de…
-
I assume the NUGET and Web.Config are basically the same but is there any documentation on usage with WebForms? Still supporting some older applications for a couple years.
-
hi
Getting this error when it's doing silent renew:
Refused to display 'https://localhost:44385/home/error?errorId=CfDJ8AYyttD0Yl1Ov-y-FXDxH2P0-9pJ7-hxGDRwVsYkW9mKghhtH4dKfFden02ijH3Eu4B2_VDtol…
-
Refused to display '/.pdf' in a frame because it set 'X-Frame-Options' to 'sameorigin'.
I have been taking this error when i have displayed pdf in iframe or embed.
``
I have tried two sug…
ghost updated
4 years ago
-
Hello,
the project looks really great. How should I do that the service is hosted in Azure?
Yours sincerely
Frank