Config: Add setting to enable strict CSP

This commit is contained in:
Eric Lippmann 2023-06-27 09:40:09 +02:00 committed by Yonas Habteab
parent 6c68578a6c
commit 0bac6cfe07
1 changed files with 12 additions and 0 deletions
application/forms/Config/General

View File

@ -55,6 +55,18 @@ class ApplicationConfigForm extends Form
)
);
$this->addElement(
'checkbox',
'security_use_strict_csp',
[
'label' => $this->translate('Enable strict content security policy'),
'description' => $this->translate(
'Set whether to to use strict content security policy (CSP).'
. ' This setting helps to protect from cross-site scripting (XSS).'
)
]
);
$this->addElement(
'text',
'global_module_path',