joe/everytab
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

check all CSP headers for iframe disallowing

Browse source
This commit is contained in:
Joe Lothan 2026-05-20 00:32:56 -04:00
parent a8177a1583
commit c9ea462e97
1 changed files with 5 additions and 3 deletions
Download patch file Download diff file Expand all files Collapse all files

4
pipeline/02_warc_parse/warc.go
View file

@ -117,10 +117,12 @@ func CheckIframeAllowed(headers http.Header) bool {
return false return false
} }
csp := strings.ToLower(headers.Get("Content-Security-Policy")) for _, csp := range headers.Values("Content-Security-Policy") {
csp = strings.ToLower(csp)
if strings.Contains(csp, "frame-ancestors") && !strings.Contains(csp, "frame-ancestors *") { if strings.Contains(csp, "frame-ancestors") && !strings.Contains(csp, "frame-ancestors *") {
return false return false
} }
}
return true return true
} }