RogerHaase
Testing on Windows 10 with #1882 and #1873 applied, I get a flash message when saving the item after the 2nd update - no internal server error. Error: metadata validation...
Right, you will only get a Load Draft button after a Preview.
@roland-ruedenauer: Can this be closed?
stuck! When I add the deprecated `report-uri` format to apps/frontend/view.py: @frontend.after_request def add_security_headers(resp): resp.headers["Content-Security-Policy-Report-Only"] = "default-src 'self'; report-uri https//127.0.0.1/csp-report-uriXXX;" return resp Then the Firefox browser creates 3 POST transactions (that...
@UlrichB22 Thanks, that is much better. Assuming you agree moin should have CSP headers, would you finish this issue? Seems I have many busy days with no time for moin...
Thanks, will be ready to help. So far Chrome, Opera, and Edge are consistent in the sequence of the cspreport fields, Firefox outputs a different sequence.
There are 3 CSP warnings when viewing http://127.0.0.1:5000/help-en/MoinWikiMacros. All are caused by xstatic-FontAwesome. Addition CSP warnings are caused by xstatic-jquery. Newer release is available.
To mitigate the problem with existing code: 1. increase the lock time in wikiconfig.py: edit_lock_time = 20 # minutes, resets when the Preview button is clicked 2. tell user to...
agree, add as an option