-
Improvement
-
Resolution: Won't Fix
-
Minor
-
None
-
3.3.0
-
MOODLE_33_STABLE
-
Moodle Mobile 3.3.2
Instead of
<meta http-equiv="Content-Security-Policy" content="default-src * filesystem: cdvfile: file: gap: https://ssl.gstatic.com; img-src * filesystem: gap: data: cdvfile: file: https://ssl.gstatic.com android-webview-video-poster:; style-src 'self' 'unsafe-inline' filesystem: cdvfile: file:; script-src 'self' 'unsafe-inline' 'unsafe-eval' http://localhost:* filesystem: cdvfile: file:">
Have
<meta http-equiv="Content-Security-Policy" content="default-src * file: data: blob: filesystem: cdvfile: file: gap: https://ssl.gstatic.com; img-src * filesystem: gap: data: cdvfile: file: https://ssl.gstatic.com android-webview-video-poster:; style-src 'self' 'unsafe-inline' filesystem: cdvfile: file:; script-src 'self' 'unsafe-inline' 'unsafe-eval' http://localhost:* filesystem: cdvfile: file:">
By adding file: data: blob: it allows javascript file creation, which would tremendously help in the remote app plugin I am creating. Thank you!
Note: If approved I am very willing to create the proper pull request with the change!