Joomla! Issue Tracker - CMS

Download
Launch
Feeling Lucky

[#32163] - [4.0] CSP article link

?
avatar C-Lodder
C-Lodder
26 Jan 2021

Steps to reproduce the issue

  1. Go to administrator/index.php?option=com_config&view=component&component=com_csp
  2. Click the "Content Security Policy (CSP)" link

Expected result

I would have thought this should direct users to https://developer.mozilla.org/en-US/docs/Web/HTTP/CSP, but instead it links to https://scotthelme.co.uk/content-security-policy-an-introduction/

Is that wise?

avatar C-Lodder C-Lodder - open - 26 Jan 2021
avatar joomla-cms-bot joomla-cms-bot - change - 26 Jan 2021
Labels Added: ?
avatar joomla-cms-bot joomla-cms-bot - labeled - 26 Jan 2021
avatar zero-24
zero-24 - comment - 26 Jan 2021

Well the article from scott is more directed to users, But I have no strong opinions here feel free to send a PR to change it.

avatar egranty
egranty - comment - 30 Jan 2021

The article from scott discussed is obsolete and contains wrong info. For example:
*://*.scotthelme.co.uk:* would match any scheme on any subdomain of scotthelme.co.uk.
The special character * is not allowed in sheme-part.

Mozilla's docs contains some inaccuracies too, but it's kept up to date and have a multi-lang support. I vote for MDN!

avatar zero-24
zero-24 - comment - 30 Jan 2021

PR here: #32195 Thanks!

avatar zero-24 zero-24 - change - 30 Jan 2021
Status New Closed
Closed_Date 0000-00-00 00:00:00 2021-01-30 09:33:14
Closed_By zero-24
avatar zero-24 zero-24 - close - 30 Jan 2021

Add a Comment

Login with GitHub to post a comment