Skip to content

Commit

Permalink
Update _dashboards/csp/csp-dynamic-configuration.md
Browse files Browse the repository at this point in the history
Co-authored-by: Melissa Vagi <[email protected]>
Signed-off-by: Tianle Huang <[email protected]>
  • Loading branch information
tianleh and vagimeli committed Mar 18, 2024
1 parent 80dbb0d commit ef7b13d
Showing 1 changed file with 1 addition and 1 deletion.
2 changes: 1 addition & 1 deletion _dashboards/csp/csp-dynamic-configuration.md
Original file line number Diff line number Diff line change
Expand Up @@ -50,4 +50,4 @@ curl '{osd endpoint}/api/appconfig/csp.rules'

## Precedence

In general, the dynamic configurations will take precedence over the configurations in YML. Specifically, when there is non empty CSP rules configured in the index, the rules from the YML will be used. To prevent `clickjacking`, we will append the `frame-ancestors` directive with value `'self'` if the rules from YML will be used and do not already have the directive `frame-ancestors`.
Dynamic configurations override YAML configurations, except for empty CSP rules. To prevent `clickjacking`, a `frame-ancestors: self` directive is automatically added to YAML-defined rules that lack it.

0 comments on commit ef7b13d

Please sign in to comment.