Clone Tools
  • last updated 28 mins ago
Constraints
Constraints: committers
 
Constraints: files
Constraints: dates
WICKET-6813: frame-src should clone all values of child-src if unset not just the first

    • -0
    • +67
    ./ClonedCSPValue.java
  1. … 1 more file in changeset.
[WICKET-6789] javadoc and guide are updated

  1. … 1 more file in changeset.
[WICKET-6789] javadoc and guide are updated

  1. … 1 more file in changeset.
[WICKET-6789] 'base-uri' is added to CSPDirective enum

[WICKET-6789] 'base-uri' is added to CSPDirective enum

WICKET-6747 removed obsolete handler parameter

Fixed Sven's name

WICKET-6747 moved pageRender filter

to settings, so it is easier to adjust

    • -12
    • +12
    ./ContentSecurityPolicySettings.java
WICKET-6747 removed handler parameter

was used by CSPDirectiveSrcValue.NONCE only and available via

requestCycle anyway

    • -2
    • +1
    ./CSPNonceHeaderResponseDecorator.java
  1. … 1 more file in changeset.
WICKET-6727: only render CSP on RenderPageRequestHandler

  1. … 2 more files in changeset.
WICKET-6727: use a longer nonce, as recommended by spec (min 128 bit)

WICKET-6747 keep shorter getCspSettings()

  1. … 9 more files in changeset.
WICKET-6747 csp settings aligned

    • -5
    • +5
    ./CSPNonceHeaderResponseDecorator.java
    • -0
    • +91
    ./CSPRequestCycleListener.java
    • -88
    • +41
    ./ContentSecurityPolicySettings.java
  1. … 13 more files in changeset.
WICKET-6747 Rename ContentSecurityPolicyEnforcer to ContentSecurityPolicySettings

+ some minor improvements in CSP related classes

    • -2
    • +2
    ./CSPNonceHeaderResponseDecorator.java
    • -227
    • +0
    ./ContentSecurityPolicyEnforcer.java
    • -0
    • +231
    ./ContentSecurityPolicySettings.java
  1. … 10 more files in changeset.
Fix a typo in javadoc

WICKET-6727: license header

WICKET-6727: license header

WICKET-6727: easy reporting and use nonce per page

    • -0
    • +61
    ./CSPNonceHeaderResponseDecorator.java
    • -3
    • +52
    ./ContentSecurityPolicyEnforcer.java
    • -60
    • +0
    ./CspNonceHeaderResponseDecorator.java
    • -0
    • +88
    ./FixedCSPValue.java
    • -0
    • +72
    ./RelativeURICSPValue.java
    • -0
    • +110
    ./ReportCSPViolationMapper.java
  1. … 2 more files in changeset.
WICKET-6727: easy reporting and use nonce per page

    • -0
    • +61
    ./CSPNonceHeaderResponseDecorator.java
    • -3
    • +52
    ./ContentSecurityPolicyEnforcer.java
    • -60
    • +0
    ./CspNonceHeaderResponseDecorator.java
    • -0
    • +88
    ./FixedCSPValue.java
    • -0
    • +72
    ./RelativeURICSPValue.java
    • -0
    • +110
    ./ReportCSPViolationMapper.java
  1. … 2 more files in changeset.
WICKET-6727: do not unwrap HeaderItems before rendering

    • -4
    • +5
    ./CspNonceHeaderResponseDecorator.java
WICKET-6727: do not unwrap HeaderItems before rendering

    • -4
    • +5
    ./CspNonceHeaderResponseDecorator.java
WICKET-6727: API improvements and minor changes after review

  1. … 1 more file in changeset.
WICKET-6727: API improvements and minor changes after review

  1. … 1 more file in changeset.
WICKET-6727: Improved API

  1. … 3 more files in changeset.
WICKET-6727: Improved API

  1. … 3 more files in changeset.
WICKET-6727: improved documentation

WICKET-6727: improved documentation

WICKET-6727: Updated documentation, fixed websocket, fixed examples

    • -22
    • +22
    ./ContentSecurityPolicyEnforcer.java
  1. … 10 more files in changeset.
WICKET-6727: Updated documentation, fixed websocket, fixed examples

    • -22
    • +22
    ./ContentSecurityPolicyEnforcer.java
  1. … 10 more files in changeset.
WICKET-6727: ContentSecurityPolicyEnforcer must not protect non-webresponses