Manual:$wgCSPReportOnlyHeader/ru

Category:MediaWiki configuration settings/ru#CSPReportOnlyHeaderCategory:MediaWiki configuration settings introduced in version 1.32.0/ru#CSPReportOnlyHeaderCategory:MediaWiki configuration settings still in use/ru#CSPReportOnlyHeaderCategory:Content Security Policy variables/ru#CSPReportOnlyHeader
Безопасность: $wgCSPReportOnlyHeader
Controls Content-Security-Policy-Report-Only header [Experimental]
Введено в версии:1.32.0 (Gerrit change 253969; git #70941efd)
Удалено в версии:всё ещё используется
Допустимые значения:(boolean or array)
Значение по умолчанию:false
Другие настройки: По алфавиту | По функциональности

Details

This config option is exactly the same as $wgCSPHeader. Please see the documentation for that config option. The only difference is that this config doesn't block any requests. It only shows errors in the web browser javascript console, as well as the csp-report-only MediaWiki debug log (As opposed to the 'csp' debug log for the main header). You can set this to an entirely different value than $wgCSPHeader, if you want to test a potentially change before implementing it.

См. также

Category:Content Security Policy variables/ru Category:MediaWiki configuration settings/ru Category:MediaWiki configuration settings introduced in version 1.32.0/ru Category:MediaWiki configuration settings still in use/ru