Add CSP section

author: Robert Newson <rnewson@apache.org> 2014-07-03 17:20:56 +0100
committer: Robert Newson <rnewson@apache.org> 2014-07-03 17:20:56 +0100
commit: 972b5d771e652213a423ffe8648ae7a94e7c8b75 (patch)
tree: 307e96b6a8b03092d911aab99a406d48fcbd5421
parent: de62520cb1321cb90e88efe238f0b33f85597aeb (diff)
download: couchdb-972b5d771e652213a423ffe8648ae7a94e7c8b75.tar.gz
1 files changed, 5 insertions, 0 deletions
diff --git a/rel/overlay/etc/default.ini b/rel/overlay/etc/default.ini
index e36b0c274..93b3b3a5e 100644
--- a/rel/overlay/etc/default.ini
+++ b/rel/overlay/etc/default.ini
@@ -72,6 +72,11 @@ iterations = 10000 ; iterations for password hashing
 ; min_iterations = 1
 ; max_iterations = 1000000000
 
+; Experimental CSP (Content Security Policy) Support for _utils
+[csp]
+enable = false
+; header_value = default-src 'self'; img-src 'self'; font-src *; script-src 'self' 'unsafe-eval'; style-src 'self' 'unsafe-inline';
+
 [cors]
 credentials = false
 ; List of origins separated by a comma, * means accept all
author	Robert Newson <rnewson@apache.org>	2014-07-03 17:20:56 +0100
committer	Robert Newson <rnewson@apache.org>	2014-07-03 17:20:56 +0100
commit	972b5d771e652213a423ffe8648ae7a94e7c8b75 (patch)
tree	307e96b6a8b03092d911aab99a406d48fcbd5421
parent	de62520cb1321cb90e88efe238f0b33f85597aeb (diff)
download	couchdb-972b5d771e652213a423ffe8648ae7a94e7c8b75.tar.gz