Fix Content-Security-Policy when using sso-redirect (#32241)

This commit is contained in:
Claire 2024-10-04 10:50:36 +02:00 committed by GitHub
parent cf28104317
commit 49407e7623
No known key found for this signature in database
GPG key ID: B5690EEEBB952194

View file

@ -13,7 +13,7 @@ module WebAppControllerConcern
policy = ContentSecurityPolicy.new
if policy.sso_host.present?
p.form_action policy.sso_host
p.form_action policy.sso_host, -> { "https://#{request.host}/auth/auth/" }
else
p.form_action :none
end