CSP nonce - Printable Version +- CodeIgniter Forums (https://forum.codeigniter.com) +-- Forum: CodeIgniter 4 (https://forum.codeigniter.com/forumdisplay.php?fid=28) +--- Forum: CodeIgniter 4 Feature Requests (https://forum.codeigniter.com/forumdisplay.php?fid=29) +--- Thread: CSP nonce (/showthread.php?tid=71388) |
CSP nonce - anthos1984 - 08-08-2018 Ask about nonce in security feature. Also CSP with nonce support. Just like CSRF token that can be included in views (manually). And handled automatically when visitor submit request to server. Some pages may need 1 to 2 lines of js code. therefore it will be inline and developer wants to meet CSP rule. Thanks RE: CSP nonce - kilishan - 08-09-2018 Already in there: https://bcit-ci.github.io/CodeIgniter4/libraries/response.html#inline-content RE: CSP nonce - anthos1984 - 08-09-2018 (08-09-2018, 06:19 AM)kilishan Wrote: Already in there: https://bcit-ci.github.io/CodeIgniter4/libraries/response.html#inline-content OK then. I just thought if CI4 already have it, but doesn't know the documentation. I try to move the docs to a proper place and topics then |