Skip to content

[BUGFIX] Additional attributes for f:security.nonce #194

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
garvinhicking merged 2 commits into from
Jan 16, 2026
Merged

[BUGFIX] Additional attributes for f:security.nonce #194

garvinhicking merged 2 commits into from
Jan 16, 2026

Conversation

@linawolf
Copy link
Member

@linawolf linawolf commented Dec 26, 2025

Resolves: #187
Releases: main, 13.4

@linawolf linawolf requested a review from ohader December 26, 2025 06:29
@linawolf
Copy link
Member Author

linawolf commented Dec 26, 2025

@ohader please review

garvinhicking
garvinhicking reviewed Jan 7, 2026
View reviewed changes
garvinhicking
garvinhicking reviewed Jan 7, 2026
View reviewed changes
garvinhicking
garvinhicking reviewed Jan 7, 2026
View reviewed changes
Documentation/Global/Security/Nonce.rst
==============================================

.. versionchanged:: 14.1, 13.4.23
CSP nonce sources set via the `{f:security.nonce()}` ViewHelper are no
Copy link
Contributor

@garvinhicking garvinhicking Jan 7, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Should we rather use <f:security.nonce> notation here, instead of the shorthand notation?

Copy link
Member Author

@linawolf linawolf Jan 8, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I think this VH is almost always used inline

garvinhicking
garvinhicking reviewed Jan 7, 2026
View reviewed changes
garvinhicking
garvinhicking reviewed Jan 7, 2026
View reviewed changes
garvinhicking
garvinhicking reviewed Jan 7, 2026
View reviewed changes
garvinhicking
garvinhicking reviewed Jan 7, 2026
View reviewed changes
garvinhicking
garvinhicking requested changes Jan 7, 2026
View reviewed changes
Copy link
Contributor

@garvinhicking garvinhicking left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Some wording changes, generally this looks good, thank you!

@linawolf @garvinhicking
Apply suggestions from code review
748d609 
Co-authored-by: Garvin Hicking <blog@garv.in>
@garvinhicking garvinhicking merged commit 9947e0e into main Jan 16, 2026
10 checks passed
@garvinhicking garvinhicking deleted the task/nonce branch January 16, 2026 16:39
@github-actions github-actions bot mentioned this pull request Jan 16, 2026
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@garvinhicking garvinhicking garvinhicking approved these changes

@ohader ohader Awaiting requested review from ohader

Assignees

No one assigned

Labels

backport 13.4

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

Additional attributes for f:security.nonce

3 participants

@linawolf @garvinhicking