Closed danieltott closed 1 year ago
This still doesn't work for me, using latest dev-master. I can see the 'url' parameter is used, but the value "https://localhost:8082/csp/enforce/1"
still comes out as https%3A%2F%2Flocalhost%3A8082%2Fcsp%2Fenforce%2F1
. If I remove the call to $this->enc(...)
entirely, it works (obviously not desirable though)
Migrating back to 2.7.0 fixes my particular problem. Is there a reason the report-uri key needs to be sent through an extra encoding step?
Is this fixed for you in v2.8.1
? https://github.com/paragonie/csp-builder/releases/tag/v2.8.1
report-uri
values are being incorrectly encoded. Theenc()
function takes atype
parameter that was missing.