Differences From Artifact [d75f4c6859]:
- File src/db.c — part of check-in [14c81d9d2b] at 2020-02-26 14:28:31 on branch trunk — Put the Content-Security-Policy in the HTTP reply header in addition to the HTML header. That way, the CSP is enforced even for raw HTML pages or if the skin provides an HTML header that omits the CSP. Add a new "default-csp" setting included with the skin that allows an administrator to change the CSP to allow for CDNs and such. (user: drh size: 131112)
To Artifact [e4c7d9dfef]:
- File src/db.c — part of check-in [55a7643938] at 2020-03-12 16:56:27 on branch eradicate-d-cap — An extension of [3941824d] to remove all mention of 'd' capability from the code, not just ifdef or comment it out. Also removes it from the docs and from the default capability set for Developer, dei -> ei. (user: wyoung size: 131111) [more...]
| ︙ | |||
2072 2073 2074 2075 2076 2077 2078 | 2072 2073 2074 2075 2076 2077 2078 2079 2080 2081 2082 2083 2084 2085 2086 | - + |
if( !setupUserOnly ){
db_multi_exec(
"INSERT OR IGNORE INTO user(login,pw,cap,info)"
" VALUES('anonymous',hex(randomblob(8)),'hmnc','Anon');"
"INSERT OR IGNORE INTO user(login,pw,cap,info)"
" VALUES('nobody','','gjorz','Nobody');"
"INSERT OR IGNORE INTO user(login,pw,cap,info)"
|
| ︙ |