Skip to content

http security: remove form-action from CSP definitions

kaniini requested to merge bugfix/csp-remove-form-action into develop

Fixes OAuth login with iOS devices, the form-action * value seems entirely useless anyway. Closes #379 (closed).

Merge request reports