Age | Commit message (Collapse) | Author | |
---|---|---|---|
2019-02-22 | CSP. | Marcello Stanisci | |
Enabling taler.net as 'default-src' because of 'glyphicons' loading. | |||
2019-02-22 | Allow taler.net in CSP for style and script. | Marcello Stanisci | |
2018-11-11 | letsencrypt decided to rename dir | Christian Grothoff | |
2018-02-06 | oops, also allow 'self' for img-src | Florian Dold | |
2018-02-06 | serve images for staging correctly, allow data URLs as img-src | Florian Dold | |
2017-09-09 | django needs same-origin | Christian Grothoff | |
2017-09-09 | disable referrer | Christian Grothoff | |
2017-09-09 | allow wss | Christian Grothoff | |
2017-09-09 | allow wss | Christian Grothoff | |
2017-09-09 | allow wss | Christian Grothoff | |
2017-09-09 | try with extra 'security' headers | Christian Grothoff | |
2016-09-05 | temporarily switch off web security stuff | Florian Dold | |
2016-08-27 | typo | root | |
2016-08-27 | syntax | root | |
2016-08-27 | set headers to improve security | root | |
2016-08-08 | use inline TLS config everywhere, enable includeSubDomains directive | Christian Grothoff | |
2016-04-22 | python shop | Florian Dold | |