(struts-site) branch asf-staging updated: Updates stage by Jenkins

git-site-role Sun, 09 Jun 2024 23:16:15 -0700

This is an automated email from the ASF dual-hosted git repository.

git-site-role pushed a commit to branch asf-staging
in repository https://gitbox.apache.org/repos/asf/struts-site.git



The following commit(s) were added to refs/heads/asf-staging by this push:
     new 4201f4428 Updates stage by Jenkins
4201f4428 is described below

commit 4201f4428ef158d342cf40e3b97d20c34902eb70
Author: jenkins <bui...@apache.org>
AuthorDate: Mon Jun 10 06:16:07 2024 +0000

    Updates stage by Jenkins
---
 content/core-developers/csp-interceptor.html | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/content/core-developers/csp-interceptor.html 
b/content/core-developers/csp-interceptor.html
index d5f7be7b8..638b15d5a 100644
--- a/content/core-developers/csp-interceptor.html
+++ b/content/core-developers/csp-interceptor.html
@@ -173,7 +173,7 @@ header is sent and <code class="language-plaintext 
highlighter-rouge">Content-Se
 
 <p>CSP is now supported by all major browsers. <a 
href="https://developer.mozilla.org/en-US/docs/Web/HTTP/CSP";>More information 
about CSP</a>.</p>
 
-<p>The interceptor adds a nonce value automatically to to <code 
class="language-plaintext highlighter-rouge">&lt;s:script&gt;</code> and <code 
class="language-plaintext highlighter-rouge">&lt;s:link&gt;</code> tags. This 
provides a painless way to
+<p>The interceptor adds a nonce value automatically to <code 
class="language-plaintext highlighter-rouge">&lt;s:script&gt;</code> and <code 
class="language-plaintext highlighter-rouge">&lt;s:link&gt;</code> tags. This 
provides a painless way to
 implement CSP in a highly secure fashion.</p>
 
 <h2 id="parameters">Parameters</h2>
@@ -183,6 +183,8 @@ implement CSP in a highly secure fashion.</p>
 is going to be enforced.</li>
   <li><code class="language-plaintext highlighter-rouge">reportUri</code> - an 
uri under which the violations will be reported.</li>
   <li><code class="language-plaintext 
highlighter-rouge">prependServletContext</code> (default <code 
class="language-plaintext highlighter-rouge">true</code>) - a flag to prepend 
or not the Servlet context to the <code class="language-plaintext 
highlighter-rouge">reportUri</code></li>
+  <li><code class="language-plaintext 
highlighter-rouge">cspSettingsClassName</code> (default to <code 
class="language-plaintext highlighter-rouge">DefaultCspSettings.class</code>) - 
a full class name implementing <code class="language-plaintext 
highlighter-rouge">CspSettings</code> interface
+to allow to define a custom CPS settings. It’s alternative approach of using 
<a href="#action-aware">CspAware</a> interface below.</li>
 </ul>
 
 <h2 id="report-action">Report action</h2>

(struts-site) branch asf-staging updated: Updates stage by Jenkins

Reply via email to