Page MenuHomePhorge
Files F2534373

No OneTemporary
Actions

Size
1 KB
Referenced Files
None
Subscribers
None

View Options

diff --git a/src/app/Http/Middleware/ContentSecurityPolicy.php b/src/app/Http/Middleware/ContentSecurityPolicy.php
index e0083e30..9dd09804 100644
--- a/src/app/Http/Middleware/ContentSecurityPolicy.php
+++ b/src/app/Http/Middleware/ContentSecurityPolicy.php
@@ -1,34 +1,39 @@
<?php
namespace App\Http\Middleware;
use Closure;
class ContentSecurityPolicy
{
/**
* Handle an incoming request.
*
* @param \Illuminate\Http\Request $request
* @param \Closure $next
*
* @return mixed
*/
public function handle($request, Closure $next)
{
$headers = [
'csp' => 'Content-Security-Policy',
'xfo' => 'X-Frame-Options',
];
+ //Exclude horizon routes, per https://github.com/laravel/horizon/issues/576
+ if ($request->is('horizon*')) {
+ $headers = [];
+ }
+
$next = $next($request);
foreach ($headers as $opt => $header) {
if ($value = \config("app.headers.{$opt}")) {
$next->headers->set($header, $value);
}
}
return $next;
}
}

File Metadata

Mime Type
text/x-diff
Expires
Fri, Feb 6, 11:34 AM (25 m, 39 s)
Storage Engine
blob
Storage Format
Raw Data
Storage Handle
428242
Default Alt Text
(1 KB)

Event Timeline