Content Security Policy (CSP) for Code Apps #31
Closed
scottdurow
started this conversation in
Ideas
Replies: 2 comments
-
|
This could maybe be modelled as a special "connector" in the DLP policies. Then a list of the allowed domains there could control the hosts appearing in the CSP headers. This would ensure that these apps aren't operating outside of DLP and there's no new concept needed to allow this to be configured. |
Beta Was this translation helpful? Give feedback.
0 replies
-
|
Check the announcement I just posted to learn about and take action on configuring CSP enforcement for code apps! |
Beta Was this translation helpful? Give feedback.
0 replies
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Uh oh!
There was an error while loading. Please reload this page.
-
I can see a need for being able to control your app HTTP headers such as CSP (Content Security Policy) like Power Pages - https://learn.microsoft.com/en-us/power-pages/security/manage-content-security-policy
Thoughts?
Beta Was this translation helpful? Give feedback.
All reactions