File tree Expand file tree Collapse file tree 1 file changed +1
-2
lines changed
Expand file tree Collapse file tree 1 file changed +1
-2
lines changed Original file line number Diff line number Diff line change @@ -115,12 +115,11 @@ public function boot()
115115 */
116116 LogViewer::auth (function ($ request
117117 // We must disable unsafe-eval because vue3 used by log-viewer requires it.
118- // We must disable unsafe-inline because log-viewer uses inline script with parameter to boot.
118+ // We must disable unsafe-inline (and hashes) because log-viewer uses inline script with parameter to boot.
119119 // Those parameters are not know by Lychee if someone modifies the config.
120120 // We only do that in that specific case. It is disabled by default otherwise.
121121 config (['secure-headers.csp.script-src.unsafe-eval ' => true ]);
122122 config (['secure-headers.csp.script-src.unsafe-inline ' => true ]);
123- config (['secure-headers.csp.script-src.unsafe-inline ' => true ]);
124123 config (['secure-headers.csp.script-src.hashes.sha256 ' => []]);
125124
126125 // Allow to bypass when debug is ON and when env is dev
You can’t perform that action at this time.
0 commit comments