http security: remove form-action from CSP definitions

author: William Pitcock <nenolod@dereferenced.org> 2018-11-16 17:40:21 +0000
committer: William Pitcock <nenolod@dereferenced.org> 2018-11-16 17:40:21 +0000
commit: c07464607d192add7fec0c91899eb8d3c077d876 (patch)
tree: 1fd2fa3cfbd08c361f6179c44d1e32b149b9bf1d /lib
parent: 4ad043256542f2defd147f9257466d848e417c26 (diff)
download: pleroma-c07464607d192add7fec0c91899eb8d3c077d876.tar.gz
1 files changed, 0 insertions, 1 deletions
diff --git a/lib/pleroma/plugs/http_security_plug.ex b/lib/pleroma/plugs/http_security_plug.ex
index 960c7f6bf..31c7332f8 100644
--- a/lib/pleroma/plugs/http_security_plug.ex
+++ b/lib/pleroma/plugs/http_security_plug.ex
@@ -32,7 +32,6 @@ defmodule Pleroma.Plugs.HTTPSecurityPlug do
     [
       "default-src 'none'",
       "base-uri 'self'",
-      "form-action *",
       "frame-ancestors 'none'",
       "img-src 'self' data: https:",
       "media-src 'self' https:",
author	William Pitcock <nenolod@dereferenced.org>	2018-11-16 17:40:21 +0000
committer	William Pitcock <nenolod@dereferenced.org>	2018-11-16 17:40:21 +0000
commit	c07464607d192add7fec0c91899eb8d3c077d876 (patch)
tree	1fd2fa3cfbd08c361f6179c44d1e32b149b9bf1d /lib
parent	4ad043256542f2defd147f9257466d848e417c26 (diff)
download	pleroma-c07464607d192add7fec0c91899eb8d3c077d876.tar.gz