koehnlein, 1 month ago (edited 1 month ago) I had trouble with Content-Security-Policy reporting on a password protected staging environment in combination with Firefox. I found a nice solution and blogged about it: https://www.koehnlein.eu/en/blog/2024/csp-reporting-basic-auth/ #CSP #Apache #Firefox
I had trouble with Content-Security-Policy reporting on a password protected staging environment in combination with Firefox. I found a nice solution and blogged about it:
https://www.koehnlein.eu/en/blog/2024/csp-reporting-basic-auth/
#CSP #Apache #Firefox
danielsiepmann, 1 month ago @koehnlein Thanks for sharing :) I guess Firefox added a layer of security. It no longer passes basic auth in URLs. It would ask you whether it was expected in order to be confirmed by a user. But that doesn't we to work for those inner requests. Just as an possible explanation why your, and mine, favourite browser doesn't "support" that.
@koehnlein Thanks for sharing :) I guess Firefox added a layer of security. It no longer passes basic auth in URLs.
It would ask you whether it was expected in order to be confirmed by a user. But that doesn't we to work for those inner requests.
Just as an possible explanation why your, and mine, favourite browser doesn't "support" that.
Add comment