ts: lib/csp.js

Signed-off-by: Raccoon <raccoon@hackmd.io>
2025-02-11 19:26:35 +00:00 · 2021-06-12 07:05:41 +08:00 · 2021-06-12 07:05:41 +08:00 · 385ef6940b
commit 385ef6940b
parent 8ea1eb2650
1 changed files with 5 additions and 3 deletions
--- a/lib/csp.ts
+++ b/lib/csp.ts
@ -1,7 +1,7 @@
 import * as config from "./config";
 import * as uuid from "uuid";

-var CspStrategy = {}
+var CspStrategy: any = {}

 var defaultDirectives = {
  defaultSrc: ['\'self\''],
@ -86,8 +86,10 @@ function getCspNonce(req, res) {
 function addUpgradeUnsafeRequestsOptionTo(directives) {
  if (config.csp.upgradeInsecureRequests === 'auto' && config.useSSL) {
    directives.upgradeInsecureRequests = true
-  } else if (config.csp.upgradeInsecureRequests === true) {
-    directives.upgradeInsecureRequests = true
+  } else { // @ts-ignore
+    if (config.csp.upgradeInsecureRequests === true) {
+        directives.upgradeInsecureRequests = true
+      }
  }
 }