Closed turboMaCk closed 8 years ago
It will be nice to have support for: Content-Security-Policy: block-all-mixed-content
Content-Security-Policy: block-all-mixed-content
http://www.w3.org/TR/2015/CR-mixed-content-20151008/ and even http://www.w3.org/TR/2015/CR-upgrade-insecure-requests-20151008/
Hacky solution:
csp: { policy: { '': 'block-all-mixed-content' } }
Makes sense to me. :+1:
jasisk
commented
8 years ago jasisk
commented
8 years ago
It will be nice to have support for:
Content-Security-Policy: block-all-mixed-contenthttp://www.w3.org/TR/2015/CR-mixed-content-20151008/ and even http://www.w3.org/TR/2015/CR-upgrade-insecure-requests-20151008/
Hacky solution: