Versions Compared

Version Old Version 2 New Version Current
Changes made by

Niels Erik Knudsen

Gosia Creosteanu

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

To enable CSP, you need to configure your web server to return the Content-Security-Policy HTTP header.

Info

Links:

Digizuite DAM Center

Dam Center uses the httpProtocol CustomHeaders to inject the CSP configuration.

...

Code Block
<add name="Content-Security-Policy-Report-Only" value="
report-to /dmm3bwsv3/csp-reports;
report-uri /dmm3bwsv3/csp-reports;
base-uri 'self';
default-src 'self';
style-src-attr 'unsafe-inline';
style-src-elem 'self' 'unsafe-inline';
img-src data: 'self';
script-src 'self' 'unsafe-inline' 'unsafe-eval';
" />

...