Contao CSP Bundle

This bundle backports parts of the Content Security Policy (CSP) implementation of Contao 5.3 to Contao 4.13.

This bundle has no handling for inline scripts and styles. You need to add 'unsafe-inline' to your directives.

Upgrade to contao 5

This bundle is just a backport. You can seamlessly upgrade to Contao 5.3 without touching your CSP configuration (you need to uninstall this bundle before upgrading). Afterwards you can also remove the 'unsafe-inline' directive from your CSP configuration as contao 5.3 has support for handling inline scripts and styles for csp.

Installation

Install the bundle via composer or contao manager and update the database afterwards.

composer require heimrichhannot/contao-csp-bundle

Configuration

Go to the root page settings. There you find an option to enable CSP. If you enable it, you can configure the CSP directives.

Name		Name	Last commit message	Last commit date
Latest commit History 15 Commits
.github/ISSUE_TEMPLATE		.github/ISSUE_TEMPLATE
config		config
contao		contao
docs/screenshots		docs/screenshots
src		src
tools		tools
.gitignore		.gitignore
CHANGELOG.md		CHANGELOG.md
LICENSE.md		LICENSE.md
README.md		README.md
composer.json		composer.json

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Repository files navigation

Contao CSP Bundle

Upgrade to contao 5

Installation

Configuration

Read more

About

Releases 1

Packages

Languages

License

heimrichhannot/contao-csp-bundle

Folders and files

Latest commit

History

Repository files navigation

Contao CSP Bundle

Upgrade to contao 5

Installation

Configuration

Read more

About

Resources

License

Stars

Watchers

Forks

Releases 1

Packages 0

Languages

Packages