0
Fork 0
mirror of https://github.com/logto-io/logto.git synced 2024-12-16 20:26:19 -05:00
logto/.changeset/cool-oranges-cheer.md
simeng-li ac65c8de4a
refactor(core): remove the reportOnly flag (#3849)
* refactor(core): remove the reportOnly flag

remove all the reportOnly flag of the CSP security headers. Bring up strict policy check

* chore: add changeset

add changeset
2023-05-17 14:00:01 +08:00

236 B

@logto/cloud @logto/core
patch patch

Enable strict CSP policy check header

This change removes the report only flag from CSP security header settings, which will enables the strict CSP policy check for all requests.