To fix this, I use the dir parameter, for example: './book,' then go to the absolute + canonical path of it. This value will become the trusted root patch, so later, I can use it to compare if it is the root of any request. If it is not, then it is violating.
dubyte
commented
5 months ago
To fix this, I use the dir parameter, for example: './book,' then go to the absolute + canonical path of it. This value will become the trusted root patch, so later, I can use it to compare if it is the root of any request. If it is not, then it is violating.