diff options
| author | Claire <claire.github-309c@sitedethib.com> | 2023-06-05 17:35:05 +0200 |
|---|---|---|
| committer | GitHub <noreply@github.com> | 2023-06-05 17:35:05 +0200 |
| commit | e428670e614b59048431c79e849d18315da98d72 (patch) | |
| tree | fa524d4d5abb97da95974abeb81df76cffaafacd | |
| parent | 1483a3ddfe74e4fb81d87447a1781943eab86c60 (diff) | |
Fix CSP headers when S3_ALIAS_HOST includes a path component (#25273)
| -rw-r--r-- | config/initializers/content_security_policy.rb | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/config/initializers/content_security_policy.rb b/config/initializers/content_security_policy.rb index f4f9177996f..a05b67440c8 100644 --- a/config/initializers/content_security_policy.rb +++ b/config/initializers/content_security_policy.rb @@ -3,7 +3,7 @@ # https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Content-Security-Policy def host_to_url(str) - "http#{Rails.configuration.x.use_https ? 's' : ''}://#{str}" if str.present? + "http#{Rails.configuration.x.use_https ? 's' : ''}://#{str}".split('/').first if str.present? end base_host = Rails.configuration.x.web_domain |