sourcehut
/
srht.site
mirror of https://git.sr.ht/~sircmpwn/srht.site
1
0
Fork 0
Code Issues Projects Releases Wiki Activity

Explain CSP impact on target="_blank" links

This commit is contained in:
Conrad Hoffmann 2022-08-02 15:31:16 +02:00 committed by Drew DeVault
parent 5777fd6be6
commit b063e3a491
1 changed files with 3 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
content/limitations.md
View File

@ -20,6 +20,9 @@ Content-Security-Policy:
The main consequence of this is that all resources must be served from
your domain — you cannot use a CDN or embed third-party content.
It also disallows forcing links to open in new tabs (`target="_blank"`), as
this is equivalent to opening a pop-up in the browser security model.
The published tarball is limited to 1 GiB in size, after decompression. Any
entries other than regular files are ignored (such as symlinks).