Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Enable CSP (frontend) #11

Open
Wolven531 opened this issue Jun 22, 2021 · 1 comment
Open

Enable CSP (frontend) #11

Wolven531 opened this issue Jun 22, 2021 · 1 comment
Assignees
@Wolven531
Labels
feature New feature or request security Change improves or fixes one or more security holes
Milestone
MVP (Minimum Viab...

Comments

@Wolven531
Copy link
Owner

Enable Content Security Policy (CSP) on the frontend, to help protect against man-in-the-middle attacks and cross site injection.

Note - this will involve an update to the .env file
@Wolven531 Wolven531 added feature New feature or request security Change improves or fixes one or more security holes labels Jun 22, 2021
@Wolven531 Wolven531 self-assigned this Jun 22, 2021
@Wolven531 Wolven531 assigned Wolven531 and unassigned Wolven531 Jun 22, 2021
@jhechtf
Copy link

jhechtf commented Jul 6, 2021

I'll look into how to set CSP with Heroku.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@Wolven531 Wolven531

Labels
feature New feature or request security Change improves or fixes one or more security holes
Projects
@Wolven531's Next Gen League Compare
Status: Todo
Milestone
MVP (Minimum Viable Product)
Development

No branches or pull requests
2 participants
@Wolven531 @jhechtf