echo: add block-all-mixed-content to csp mw

author: Mike Crute <mike@crute.us> 2023-09-26 21:00:43 -0700
committer: Mike Crute <mike@crute.us> 2023-09-26 21:00:43 -0700
commit: 51860dd47514574836af50ebccc0b719f1c78cde (patch)
tree: 540b1879d0a4198e21d2c51ed8e7e6da4635b669
parent: d5db66b59c67e26398dc61302b28e26885899b7b (diff)
download: golib-51860dd47514574836af50ebccc0b719f1c78cde.tar.bz2
golib-51860dd47514574836af50ebccc0b719f1c78cde.tar.xz
golib-51860dd47514574836af50ebccc0b719f1c78cde.zip
1 files changed, 1 insertions, 0 deletions
diff --git a/echo/middleware/csp.go b/echo/middleware/csp.go
index 7ff4098..14047eb 100644
--- a/echo/middleware/csp.go
+++ b/echo/middleware/csp.go
@@ -33,6 +33,7 @@ type ContentSecurityPolicyConfig struct {
        Sandbox                 []CSPSandbox   `csp:"sandbox"`
        FormAction              []CSPDirective `csp:"form-action"`
        UpgradeInsecureRequests bool           `csp:"upgrade-insecure-requests"`
+        BlockAllMixedContent    bool           `csp:"block-all-mixed-content"`
        FrameAncestors          []CSPDirective `csp:"frame-ancestors"`
        ReportUri               []*url.URL     `csp:"report-uri"`                // deprecated
        ReportTo                []CSPReportTo  `csp:"report-to"`                 // experimental
author	Mike Crute <mike@crute.us>	2023-09-26 21:00:43 -0700
committer	Mike Crute <mike@crute.us>	2023-09-26 21:00:43 -0700
commit	51860dd47514574836af50ebccc0b719f1c78cde (patch)
tree	540b1879d0a4198e21d2c51ed8e7e6da4635b669
parent	d5db66b59c67e26398dc61302b28e26885899b7b (diff)
download	golib-51860dd47514574836af50ebccc0b719f1c78cde.tar.bz2 golib-51860dd47514574836af50ebccc0b719f1c78cde.tar.xz golib-51860dd47514574836af50ebccc0b719f1c78cde.zip

diff --git a/echo/middleware/csp.go b/echo/middleware/csp.go index 7ff4098..14047eb 100644 --- a/echo/middleware/csp.go +++ b/echo/middleware/csp.go
@@ -33,6 +33,7 @@ type ContentSecurityPolicyConfig struct {
33	Sandbox []CSPSandbox `csp:"sandbox"`	33	Sandbox []CSPSandbox `csp:"sandbox"`
34	FormAction []CSPDirective `csp:"form-action"`	34	FormAction []CSPDirective `csp:"form-action"`
35	UpgradeInsecureRequests bool `csp:"upgrade-insecure-requests"`	35	UpgradeInsecureRequests bool `csp:"upgrade-insecure-requests"`
		36	BlockAllMixedContent bool `csp:"block-all-mixed-content"`
36	FrameAncestors []CSPDirective `csp:"frame-ancestors"`	37	FrameAncestors []CSPDirective `csp:"frame-ancestors"`
37	ReportUri []*url.URL `csp:"report-uri"` // deprecated	38	ReportUri []*url.URL `csp:"report-uri"` // deprecated
38	ReportTo []CSPReportTo `csp:"report-to"` // experimental	39	ReportTo []CSPReportTo `csp:"report-to"` // experimental