Fossil SCM
Update documentation on CSP to point the user to the default-csp setting.
Commit
f5778d0d9116642de5d6c508d88207a820826ef0f44a438d9e615bc11f01026a
Parent
00ad7ef3f2caf93…
1 file changed
+12
-1
+12
-1
| --- www/defcsp.md | ||
| +++ www/defcsp.md | ||
| @@ -304,11 +304,22 @@ | ||
| 304 | 304 | |
| 305 | 305 | |
| 306 | 306 | ## <a name="override"></a>Overriding the Default CSP |
| 307 | 307 | |
| 308 | 308 | If you wish to relax the default CSP’s restrictions or to tighten them |
| 309 | -further, there are two ways to accomplish that: | |
| 309 | +further, there are multiple ways to accomplish that: | |
| 310 | + | |
| 311 | +### <a name="cspsetting"></a>The `default-csp` Setting | |
| 312 | + | |
| 313 | +If the [`default-csp` setting](/help?cmd=default-csp) | |
| 314 | +is defined and is not an empty string, | |
| 315 | +then the content of that setting is used as the default CSP. This | |
| 316 | +is the easiest way to use non-standard CSP on your site. | |
| 317 | + | |
| 318 | +You can edit the default-csp setting directly from the web interface | |
| 319 | +by visiting the Admin/Settings page and changing the text in the | |
| 320 | +edit box for "default-csp". | |
| 310 | 321 | |
| 311 | 322 | |
| 312 | 323 | ### <a name="th1"></a>TH1 Setup Hook |
| 313 | 324 | |
| 314 | 325 | The stock CSP text is hard-coded in the Fossil C source code, but it’s |
| 315 | 326 |
| --- www/defcsp.md | |
| +++ www/defcsp.md | |
| @@ -304,11 +304,22 @@ | |
| 304 | |
| 305 | |
| 306 | ## <a name="override"></a>Overriding the Default CSP |
| 307 | |
| 308 | If you wish to relax the default CSP’s restrictions or to tighten them |
| 309 | further, there are two ways to accomplish that: |
| 310 | |
| 311 | |
| 312 | ### <a name="th1"></a>TH1 Setup Hook |
| 313 | |
| 314 | The stock CSP text is hard-coded in the Fossil C source code, but it’s |
| 315 |
| --- www/defcsp.md | |
| +++ www/defcsp.md | |
| @@ -304,11 +304,22 @@ | |
| 304 | |
| 305 | |
| 306 | ## <a name="override"></a>Overriding the Default CSP |
| 307 | |
| 308 | If you wish to relax the default CSP’s restrictions or to tighten them |
| 309 | further, there are multiple ways to accomplish that: |
| 310 | |
| 311 | ### <a name="cspsetting"></a>The `default-csp` Setting |
| 312 | |
| 313 | If the [`default-csp` setting](/help?cmd=default-csp) |
| 314 | is defined and is not an empty string, |
| 315 | then the content of that setting is used as the default CSP. This |
| 316 | is the easiest way to use non-standard CSP on your site. |
| 317 | |
| 318 | You can edit the default-csp setting directly from the web interface |
| 319 | by visiting the Admin/Settings page and changing the text in the |
| 320 | edit box for "default-csp". |
| 321 | |
| 322 | |
| 323 | ### <a name="th1"></a>TH1 Setup Hook |
| 324 | |
| 325 | The stock CSP text is hard-coded in the Fossil C source code, but it’s |
| 326 |