For which resources are those HashCodes ? --> This should be documented
There is no report uri set. This way violations, would not be visible except for the browser console.
What is this picture source for ? This is an external host, which might not be safe or even reachable
.From("https://avatars3.githubusercontent.com/u/25212406");
As I remember, we decided that a default set of rules (not only csp) should have been implemented within the Arc4u framework and not being generated each time. For project related extensions of the rules, there should have been methods within the Arc4u.
Following some concerns about the csp implemenation.
When generating the CSP rules, different hash codes are being generated, for example
For which resources are those HashCodes ? --> This should be documented There is no report uri set. This way violations, would not be visible except for the browser console.
What is this picture source for ? This is an external host, which might not be safe or even reachable
.From("https://avatars3.githubusercontent.com/u/25212406");
As I remember, we decided that a default set of rules (not only csp) should have been implemented within the Arc4u framework and not being generated each time. For project related extensions of the rules, there should have been methods within the Arc4u.