(struts-site) branch asf-site updated: Automatic Site Publish by Buildbot

Tue, 05 Mar 2024 22:08:45 -0800 

This is an automated email from the ASF dual-hosted git repository.

git-site-role pushed a commit to branch asf-site
in repository https://gitbox.apache.org/repos/asf/struts-site.git


The following commit(s) were added to refs/heads/asf-site by this push:
     new aa5cf6f82 Automatic Site Publish by Buildbot
aa5cf6f82 is described below

commit aa5cf6f82ab47078769ce33be8c86ee652e3a63d
Author: buildbot <us...@infra.apache.org>
AuthorDate: Wed Mar 6 06:08:05 2024 +0000

    Automatic Site Publish by Buildbot
---
 output/core-developers/csp-interceptor.html | 5 ++++-
 1 file changed, 4 insertions(+), 1 deletion(-)

diff --git a/output/core-developers/csp-interceptor.html 
b/output/core-developers/csp-interceptor.html
index 2b161917b..d088c1512 100644
--- a/output/core-developers/csp-interceptor.html
+++ b/output/core-developers/csp-interceptor.html
@@ -173,12 +173,15 @@ header is sent and <code class="language-plaintext 
highlighter-rouge">Content-Se
 
 <p>CSP is now supported by all major browsers. <a 
href="https://developer.mozilla.org/en-US/docs/Web/HTTP/CSP";>More information 
about CSP</a>.</p>
 
+<p>The interceptor adds a nonce value automatically to to <code 
class="language-plaintext highlighter-rouge">&lt;s:script&gt;</code> and <code 
class="language-plaintext highlighter-rouge">&lt;s:link&gt;</code> tags. This 
provides a painless way to
+implement CSP in a highly secure fashion.</p>
+
 <h2 id="parameters">Parameters</h2>
 
 <ul>
   <li><code class="language-plaintext highlighter-rouge">enforcingMode</code> 
(default <code class="language-plaintext highlighter-rouge">false</code>) - 
When set to “true”, the enforce mode has been enabled, and the provided policy 
 is going to be enforced.</li>
-  <li><code class="language-plaintext highlighter-rouge">reportUri</code> - an 
uri under, which the violations have to be reported.</li>
+  <li><code class="language-plaintext highlighter-rouge">reportUri</code> - an 
uri under which the violations will be reported.</li>
   <li><code class="language-plaintext 
highlighter-rouge">prependServletContext</code> (default <code 
class="language-plaintext highlighter-rouge">true</code>) - a flag to prepend 
or not the Servlet context to the <code class="language-plaintext 
highlighter-rouge">reportUri</code></li>
 </ul>

Reply via email to