Author: deepak Date: Tue Dec 19 06:29:13 2017 New Revision: 1818639 URL: http://svn.apache.org/viewvc?rev=1818639&view=rev Log: Reverted: Local changes committed at r#1818600
Modified: ofbiz/ofbiz-framework/trunk/framework/webapp/src/main/java/org/apache/ofbiz/webapp/control/RequestHandler.java Modified: ofbiz/ofbiz-framework/trunk/framework/webapp/src/main/java/org/apache/ofbiz/webapp/control/RequestHandler.java URL: http://svn.apache.org/viewvc/ofbiz/ofbiz-framework/trunk/framework/webapp/src/main/java/org/apache/ofbiz/webapp/control/RequestHandler.java?rev=1818639&r1=1818638&r2=1818639&view=diff ============================================================================== --- ofbiz/ofbiz-framework/trunk/framework/webapp/src/main/java/org/apache/ofbiz/webapp/control/RequestHandler.java (original) +++ ofbiz/ofbiz-framework/trunk/framework/webapp/src/main/java/org/apache/ofbiz/webapp/control/RequestHandler.java Tue Dec 19 06:29:13 2017 @@ -987,7 +987,7 @@ public class RequestHandler { //resp.setHeader("Content-Security-Policy", "default-src 'self'"); //resp.setHeader("Content-Security-Policy-Report-Only", "default-src 'self'; report-uri webtools/control/ContentSecurityPolicyReporter"); - //resp.setHeader("Content-Security-Policy-Report-Only", "default-src 'self'"); + resp.setHeader("Content-Security-Policy-Report-Only", "default-src 'self'"); // TODO in custom project. Public-Key-Pins-Report-Only is interesting but can't be used OOTB because of demos (the letsencrypt certificate is renewed every 3 months)