Open
Bug 1286288
Opened 8 years ago
Updated 4 years ago
Add endpoint to handle CSP reporting
Categories
(Bugzilla :: WebService, defect)
Tracking
()
NEW
People
(Reporter: dylan, Unassigned)
References
(Blocks 1 open bug, )
Details
It would be nice to support ingestion of CSP violation reports per https://developer.mozilla.org/en-US/docs/Web/Security/CSP/Using_CSP_violation_reports
|
||
Comment 1•8 years ago
|
||
To make your life easier, here is a simple nginx config that will dump CSP reports to a text file: https://gist.github.com/marumari/f2608876f2d0ccce8339448423809ea5
|
Reporter | |
Comment 2•8 years ago
|
||
My life would be so much easier if we used nginx. :( Eventually!
|
|
||
Comment 3•8 years ago
|
||
Sure, but your reporting endpoint doesn't need to be on the same host as BMO. :)
You need to log in
before you can comment on or make changes to this bug.
Description
•