about summary refs log tree commit diff
path: root/lib/devise/ldap_authenticatable.rb
diff options
context:
space:
mode:
authorRey Tucker <git@reytucker.us>2018-12-12 19:58:57 -0500
committerThibG <thib@sitedethib.com>2018-12-14 08:02:06 +0100
commit35b2ba5030dd7fb5ddbb8cb34d0fd54cec8cf269 (patch)
tree45c35454ac66b5755e24a6915c865c484cf5277e /lib/devise/ldap_authenticatable.rb
parent132dd281623d1d4a4651a60c9879e39070d5ecf3 (diff)
Remove form_action from CSP
This trips an issue when trying to authenticate through to
third-party sites, e.g. bridge.joinmastodon.org:

    Refused to send form data to 'https://bridge.joinmastodon.org/'
    because it violates the following Content Security Policy
    directive: "form-action 'self'".

Thread: https://vulpine.club/@digifox/101230933751352042
Diffstat (limited to 'lib/devise/ldap_authenticatable.rb')
0 files changed, 0 insertions, 0 deletions