X-CGP-ClamAV-Result: CLEAN X-VirusScanner: Niversoft's CGPClamav Helper v1.25a (ClamAV 0.103.8/26835) X-Junk-Score: 10 [X] X-KAS-Score: 10 [X] Return-Path: Received: from [40.107.127.97] (HELO DEU01-BE0-obe.outbound.protection.outlook.com) by selbstdenker.ag (CommuniGate Pro SMTP 6.3.17) with ESMTPS id 29884387 for webobjects-dev@wocommunity.org; Wed, 08 Mar 2023 10:51:48 +0100 Received-SPF: none receiver=post.selbstdenker.com; client-ip=40.107.127.97; envelope-from=bock@salient-doremus.de ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=CLIMoGeWlsadjbxNuTypiBUsymsGofXtLBFA4idpC/VoJMyNCV43J8ye+3SY2Y3RgS42HDDxJj7kUjYI/OHvNTIPWRl/M7HiLgitHOfGxO6FlfodWV+jdSiphtg2ZRFsiF33Hszukkj+5XixTzViKnCSEj0NY/VBLPrihe/JS9Qmrk0mDNNjCNm3mhiuAEzn6mGu7Jic16qHD9O/4JdECP8um7/Cnbr5jxp9JFAtpR7A4jH4RULBHhwrmbPQIxCPrTJaiHJqkP6XZ2UyJEqzOuAKGTiYMDER1/d8I2uXEzv5lJJlVn+N1/vBcTd6oMBatxj2tq3vWm76Rx/vnVyDjg== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=JDlqXQtyqjh3bqjaaMH/ojJSAl06bIu3gREtGDyu3hc=; b=cHqrozgFh/huEmeDfmn5IyRELUNKquIfEQNMy5lpUd1Aiej03c17tPoE0+wUyDfrKv11faKvOHTE4sxUY+BavL7iKM3NV+0C+2dU282DgYVxnnzQez2X7nGxt2NYUdn9VnuNjIR7cIO58ADGIHNs5ftfpf1CG/ULFUVVEpoPKrN9VPwOO1mfFKlOL/qYj5I+T+DhF1lrgIfYERrZ6799A3MVt2CU1QsphbO+n3Lnu8QTRS+ccP9Zb0nRzXqjyGYIA8apvp+NmRrzG6Lt7apKLu0shhisU9Cbez8BLLRZ+WmCK17ZmmEjVGcymSLfPrQHBp5/sYZPksaWrABHeyYLHA== ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=salient-doremus.de; dmarc=pass action=none header.from=salient-doremus.de; dkim=pass header.d=salient-doremus.de; arc=none DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=salient-doremus.de; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=JDlqXQtyqjh3bqjaaMH/ojJSAl06bIu3gREtGDyu3hc=; b=M6Rb9eFsdaOXY9nMOKgskeW5ZT4ANxTH4JGUT55zCLkGwzHQzt3G5fj5+kuTlvG5MmWQhGPMe+ufvDeGzTDVH+H0Hw6rkfg1hYM2jGkn0raPSlzc+6yGnuZonAfa3xs73QI3iN2BJJZtAFrC7JizNZzX6pr3gWUtGb4l6Pjh4SRW3azAkW61JP0Y/FdJ6gTY1dNRvosEReoImoCPD5+vGzXemyBE5IYGX9ldW5CXLrREgt1oSLMtYfRNpGm7NOf8wOK3zIqZ2BAqITkM+ZMUlnUT+oT4oYuA6NTp9gHjPe9fMctLgcKSgHgcXBJw11rDlqwnh/drqoq4sVWVZ7rGIA== Received: from FR2P281MB1964.DEUP281.PROD.OUTLOOK.COM (2603:10a6:d10:3f::10) by FR2P281MB2637.DEUP281.PROD.OUTLOOK.COM (2603:10a6:d10:60::14) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.6178.17; Wed, 8 Mar 2023 09:51:24 +0000 Received: from FR2P281MB1964.DEUP281.PROD.OUTLOOK.COM ([fe80::2f0:bb98:6ca0:f5a7]) by FR2P281MB1964.DEUP281.PROD.OUTLOOK.COM ([fe80::2f0:bb98:6ca0:f5a7%3]) with mapi id 15.20.6156.029; Wed, 8 Mar 2023 09:51:24 +0000 From: =?utf-8?B?UmVuw6kgQm9jaw==?= To: "webobjects-dev@lists.apple.com" , WebObjects & WOnder Development Subject: Enabling HTTP Content-Security-Policy (CSP) in WebObjects/WOnder-Ajax based applications? Thread-Topic: Enabling HTTP Content-Security-Policy (CSP) in WebObjects/WOnder-Ajax based applications? Thread-Index: AQHZUaOLtqTgSCR2E06A4c6/omkNTQ== Date: Wed, 8 Mar 2023 09:51:24 +0000 Message-ID: <5320C72F-F9C7-4151-B2A3-2262D34EB54F@salient-doremus.de> Accept-Language: de-DE, en-US Content-Language: en-US X-MS-Has-Attach: X-MS-TNEF-Correlator: x-mailer: Apple Mail (2.3696.120.41.1.2) authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=salient-doremus.de; x-ms-publictraffictype: Email x-ms-traffictypediagnostic: FR2P281MB1964:EE_|FR2P281MB2637:EE_ x-ms-office365-filtering-correlation-id: a45b7789-cf11-417e-d54e-08db1fbaadba x-ms-exchange-senderadcheck: 1 x-ms-exchange-antispam-relay: 0 x-microsoft-antispam: BCL:0; x-microsoft-antispam-message-info: 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 x-forefront-antispam-report: CIP:255.255.255.255;CTRY:;LANG:en;SCL:1;SRV:;IPV:NLI;SFV:NSPM;H:FR2P281MB1964.DEUP281.PROD.OUTLOOK.COM;PTR:;CAT:NONE;SFS:(13230025)(136003)(346002)(366004)(39830400003)(396003)(376002)(451199018)(15650500001)(2906002)(38070700005)(5660300002)(36756003)(85182001)(4744005)(26005)(8936002)(41300700001)(110136005)(66476007)(66946007)(76116006)(66556008)(33656002)(66446008)(64756008)(8676002)(86362001)(316002)(478600001)(71200400001)(6486002)(122000001)(6512007)(38100700002)(6506007)(186003)(2616005)(83380400001)(66574015)(45980500001);DIR:OUT;SFP:1102; x-ms-exchange-antispam-messagedata-chunkcount: 1 x-ms-exchange-antispam-messagedata-0: =?utf-8?B?OS9DdWVYTjM4bTdzdUhQR1c5L3M2aEpUOWh4bmZrTVlJbW8yN2hHdy9SSFBI?= =?utf-8?B?T2p2b1loN3I4ajBMcmJkbmwzNTZVTjdvYkZab2xiNk5zTWlTeTNZcjF2dmxN?= =?utf-8?B?T3N2QTFZWTI2S2JsaUtFQWFoaCtHcUt3SXRuaTZOOU9abEhBV3l6VmxibWVa?= =?utf-8?B?a0dIR2VxZUpDKzBqaHNLVTNsQVhvTFUwUktPS0pKOFZ2dlNwZ0hsWHdwNFd3?= =?utf-8?B?WTJZTWROK0lFczNMQ3ZIV2JZci9BNEVDT29SNjFmMnJtUUtLVVBOOUhRaHd6?= =?utf-8?B?ZURXTStrbzVFNFIwMW9QcEhIa0QrZFNOdGJFb2IzTDJvV2srcDJJK1pDeEw5?= =?utf-8?B?TmkwRTVLckJUVTVDTDNpMWdlRmR3WmNjQzk1bk5aVEw1cEFXaTJ0UFRjVVB1?= =?utf-8?B?aEx3ZkQ2eEJvREovUldsOXdhaVNIYjFWb1NPQ0V3ZTREL01TTWVMalhFTkh2?= =?utf-8?B?dm4zNTFHdUdVU1E3RzNMelQ2bHg0SjNyeDZkSXNKSm5jS2ZQWDZINEVMaE83?= =?utf-8?B?dmo1RjVEekJZTi95Y3Uza3d5NUhpajJ1QzdYOURvRFJRMEJXdFZVbXB1MVMz?= =?utf-8?B?bnY3VGEzM0lNMHpGTGRNd2ZMSy9PVW4wbHBUbERBV0lLcjgvU2pJUDlmVlZX?= =?utf-8?B?TEhpOEt3OFUvbjJRNlBUVXlaeFJsNFphaE05RVJ1emRCLzZnMHE3Mlo2VUls?= =?utf-8?B?ZUZyWGhMeWdoV2JhdDNWYjJhalNpY0l3S1BkVnoydFlFc2ljMDlLckFrN01s?= =?utf-8?B?WWNkOFhTbDJpQkhZUFpiYWk5SXlSOVNLVHU0N0tqRkFmcVpxOGN1RjN0eWIz?= =?utf-8?B?YjUrMUtMSXpOYmh1WW90WDZaWjYyQkJmK0QwcVUzZ01mT1F3YXI1djM1dWpE?= =?utf-8?B?c3ZidW1FcXRSejVEVGdkUHN6VWhoM0FaUjljRml1T2NHUHF3Y242NnUvZFFr?= =?utf-8?B?TEwwRGEvbGRsWG02cHFGUzltOVpOZFhKbG5VcVF4UGRHUURvR3Y4MnZlRVdy?= =?utf-8?B?R2pXSU16MDFpY0V2TnZqUHhUSktPTytQSTFqSkdVUWJWK092eHFFT1lBaXNK?= =?utf-8?B?dytEaUYzWThndlBQWXdpaGVVVC9oTkR3b3N1WktUVGI0VlkvWlV4Mmh6MXNW?= =?utf-8?B?dExaTUkzNkU2bXhsaVF5bEpKTzVUSUFieXZYajJTMjhrVERUc2YydU90M1ZR?= =?utf-8?B?ZVhZRk1KcStMdHRuUWdoU3pxMHVTMGpWbDVMZzhOOTltVVcrM2g1VGdKZGkz?= =?utf-8?B?bnRLVFVBc2kxcmZRbkpISk9IeTNDbi9VMWpkZlYzSmlMN3F6dG04d0d0akNm?= =?utf-8?B?dkpRbVZCR0FTNGthRzluZ0FqTUU1MWxyeVFva0VFSzNtc3Y0NVBWWkd6TEMv?= =?utf-8?B?Tlc1S3RuSVloZmEwbFkxUXlsWktrV0VadDJOM0NhZG1ocmNPRUhrS1Y4NHlF?= =?utf-8?B?OGtuN2c5QWQrU1QyZDNDOGdYeHNEWEh5Yi9Dbi9CL3hKNjAzSXdKdzlJTmJ4?= =?utf-8?B?ayswczA1QXcrdmhxZCtEUk9CMVRLUGYrdkF1cmdodlRON1JGUTFCdVd3eUVJ?= =?utf-8?B?WmtRYm5LN2xCa3dEc0VXNDJYK0pZK1VZTVVsRzcyT01Pc1VNTVJ0alZNdEli?= =?utf-8?B?amVncDF6QUVBb3M2eEdpWHMvR1hFT2Q2K3NONTRFZzhFdkNoWDNSQVB0U3Uz?= =?utf-8?B?ekhIb0VOQVJnTFE3L2kxWTlybHMvanlEUnV4WFQ5dXhyVXYzbWxHblVpU2tR?= =?utf-8?B?M2hBblpyUXplZUtrQzZYN3FMR2xiM2NqZ1VUK25KbkVuU0VFSC9Bbk1SOFUr?= =?utf-8?B?RDRjazVraExYeXZWNW9qb0RYTDVjRm5aUllYTE5jWExlWlpidFA4TXdqWFlG?= =?utf-8?B?ZWR1UmJrSWo1MGE5aFJESDBaT0dZcWlwKzN6WFJlUDhUaU1mNElseEJ3QjJE?= =?utf-8?B?OHlLdkh2TFdtR0EwTjhJbytUVG0wbzdteUMzSGM5UXE2Z1AzdzZBcVVTZDF6?= =?utf-8?B?R2x2SnFzWVBEekl1UFh4NmdWcG9QcHFGUzNscHIxMTIyNjlDdkt5NytzK3Vk?= =?utf-8?B?OCtCZ3N4NTBCV1NmaWFCVHEwanNRTXZWWW03ZUFlclk0eFBudG1yaFRpSFE2?= =?utf-8?B?bHRPT3ZjSVRHMkVTQithT0JqN2haa2gyZWJjZWYxaTdaT05RWFVObW1MUUxj?= =?utf-8?B?L2c9PQ==?= Content-Type: text/plain; charset="utf-8" Content-ID: <4A34814E6DE03E4C8002C2E31FCC1ADE@DEUP281.PROD.OUTLOOK.COM> Content-Transfer-Encoding: base64 MIME-Version: 1.0 X-OriginatorOrg: salient-doremus.de X-MS-Exchange-CrossTenant-AuthAs: Internal X-MS-Exchange-CrossTenant-AuthSource: FR2P281MB1964.DEUP281.PROD.OUTLOOK.COM X-MS-Exchange-CrossTenant-Network-Message-Id: a45b7789-cf11-417e-d54e-08db1fbaadba X-MS-Exchange-CrossTenant-originalarrivaltime: 08 Mar 2023 09:51:24.1825 (UTC) X-MS-Exchange-CrossTenant-fromentityheader: Hosted X-MS-Exchange-CrossTenant-id: 40de108a-1ce4-47ab-bfb2-974e575beb25 X-MS-Exchange-CrossTenant-mailboxtype: HOSTED X-MS-Exchange-CrossTenant-userprincipalname: xF494HhRLkTmSTf3ftVw98HXC2a4k1eu9SY631VTuFG3JCgSlMFeMOKUpJJkl0km78hVDeNpTietZwiqlZTHlA== X-MS-Exchange-Transport-CrossTenantHeadersStamped: FR2P281MB2637 SGksDQoNCmhhcyBhbnlib2R5IGV2ZXIgc3VjY2Vzc2Z1bGx5IGVuYWJsZWQgdGhlIEhUVFAgQ29u dGVudC1TZWN1cml0eS1Qb2xpY3kgaW4gYSBXT25kZXIgYXBwbGljYXRpb24g4oCTIGVzcGVjaWFs bHkgd2hlbiB0aGUgQWpheC1GcmFtZXdvcmsgaXMgaGVhdmlseSB1c2VkPw0KDQpGcm9tIG15IHBv aW50IG9mIHZpZXcsIHRoZXJlIGFyZSB0aHJlZSBtYWluIGNoYWxsZW5nZXMgdG8gb3ZlcmNvbWUg d2hlbiBpbXBsZW1lbnRpbmcgdGhlIENTUDoNCg0KKiBpbmxpbmUgc2NyaXB0IGNvZGUNCiogRE9N IGV2ZW50IGhhbmRsZXJzIGFzIEhUTUwgYXR0cmlidXRlcyANCiogZXZhbHMgDQoNCg0KRXNwZWNp YWxseSB3aGVuIHVzaW5nIHRoZSAndW5zYWZlLWlubGluZScsICd1bnNhZmUtZXZhbCcgZXRjLiBr ZXl3b3JkcyBhcmUgbm90IGFuIG9wdGlvbi4NCg0KDQoNClJlZ2FyZHMNCg0KCVJlbsOpDQoNCg0K LS0NClBob25lOiArNDkgNjkgNjUwMDk2IDE4DQpzYWxpZW50IEdtYkggLy8gTGluZGxleXN0cmHD n2UgMTIgLy8gNjAzMTQgRnJhbmtmdXJ0DQpBbXRzZ2VyaWNodCBGcmFua2Z1cnQgYW0gTWFpbiAv LyBzYWxpZW50IEdtYkggSFJCIDQ4NjkzDQoNCg==