صفحهٔ اصلی گشت‌و‌گذار راهنما
ورود
RISCI_ATOM
/
nextcloud-server
mirrorاز https://github.com/nextcloud/server.git
1
0
انشعاب 0
پرونده‌ها مشکلات 23 ویکی
درخت: eb71ee950d
شاخه‌ها تگ‌ها
nextcloud-serve...
/
lib
/
public
/
Security
/
IContentSecurityPolicyManager.php

IContentSecurityPolicyManager.php 2.1 KB
تاريخچه خام

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657 
  1. <?php
    2. 

  2. 

  3. declare(strict_types=1);
    4. 

  4. 

  5. /**
    6. 

  6.  * @copyright Copyright (c) 2016, ownCloud, Inc.
    7. 

  7.  *
    8. 

  8.  * @author Christoph Wurst <christoph@winzerhof-wurst.at>
    9. 

  9.  * @author Lukas Reschke <lukas@statuscode.ch>
    10. 

  10.  * @author Roeland Jago Douma <roeland@famdouma.nl>
    11. 

  11.  *
    12. 

  12.  * @license AGPL-3.0
    13. 

  13.  *
    14. 

  14.  * This code is free software: you can redistribute it and/or modify
    15. 

  15.  * it under the terms of the GNU Affero General Public License, version 3,
    16. 

  16.  * as published by the Free Software Foundation.
    17. 

  17.  *
    18. 

  18.  * This program is distributed in the hope that it will be useful,
    19. 

  19.  * but WITHOUT ANY WARRANTY; without even the implied warranty of
    20. 

  20.  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
    21. 

  21.  * GNU Affero General Public License for more details.
    22. 

  22.  *
    23. 

  23.  * You should have received a copy of the GNU Affero General Public License, version 3,
    24. 

  24.  * along with this program. If not, see <http://www.gnu.org/licenses/>
    25. 

  25.  *
    26. 

  26.  */
    27. 

  27. namespace OCP\Security;
    28. 

  28. 

  29. use OCP\AppFramework\Http\EmptyContentSecurityPolicy;
    30. 

  30. 

  31. /**
    32. 

  32.  * Used for Content Security Policy manipulations
    33. 

  33.  *
    34. 

  34.  * @since 9.0.0
    35. 

  35.  * @deprecated 17.0.0 listen to the AddContentSecurityPolicyEvent to add a policy
    36. 

  36.  */
    37. 

  37. interface IContentSecurityPolicyManager {
    38. 

  38. 	/**
    39. 

  39. 	 * Allows to inject something into the default content policy. This is for
    40. 

  40. 	 * example useful when you're injecting Javascript code into a view belonging
    41. 

  41. 	 * to another controller and cannot modify its Content-Security-Policy itself.
    42. 

  42. 	 * Note that the adjustment is only applied to applications that use AppFramework
    43. 

  43. 	 * controllers.
    44. 

  44. 	 *
    45. 

  45. 	 * To use this from your `app.php` use `\OC::$server->getContentSecurityPolicyManager()->addDefaultPolicy($policy)`,
    46. 

  46. 	 * $policy has to be of type `\OCP\AppFramework\Http\ContentSecurityPolicy`.
    47. 

  47. 	 *
    48. 

  48. 	 * WARNING: Using this API incorrectly may make the instance more insecure.
    49. 

  49. 	 * Do think twice before adding whitelisting resources. Please do also note
    50. 

  50. 	 * that it is not possible to use the `disallowXYZ` functions.
    51. 

  51. 	 *
    52. 

  52. 	 * @param EmptyContentSecurityPolicy $policy
    53. 

  53. 	 * @since 9.0.0
    54. 

  54. 	 * @deprecated 17.0.0 listen to the AddContentSecurityPolicyEvent to add a policy
    55. 

  55. 	 */
    56. 

  56. 	public function addDefaultPolicy(EmptyContentSecurityPolicy $policy);
    57. 

  57. }
    58.