fix(csp): skip restrictive CSP on Wagtail/Django admin paths #25

Merged

mark merged 1 commits from fix/csp-wagtail-admin into main 2026-03-02 15:36:13 +00:00

Conversation 0 Commits 1 Files Changed 1 +4

mark commented 2026-03-02 15:34:18 +00:00

Owner

Copy Link

The SecurityHeadersMiddleware applied a strict style-src policy to all responses, blocking inline styles that Wagtail admin relies on for layout (causing dead space/broken padding in the editor). Skips the custom CSP for /cms/ and /django-admin/ paths.

The SecurityHeadersMiddleware applied a strict `style-src` policy to all responses, blocking inline styles that Wagtail admin relies on for layout (causing dead space/broken padding in the editor). Skips the custom CSP for `/cms/` and `/django-admin/` paths.

mark added 1 commit 2026-03-02 15:34:18 +00:00

fix(csp): skip restrictive CSP on Wagtail/Django admin paths ... 43594777e0

The SecurityHeadersMiddleware applied a strict style-src policy to all
responses, blocking inline styles that Wagtail admin relies on for
layout. Skip the custom CSP for /cms/ and /django-admin/ paths.

Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>

mark merged commit a59d21cfcb into main 2026-03-02 15:36:13 +00:00

mark deleted branch fix/csp-wagtail-admin 2026-03-02 15:36:13 +00:00

mark referenced this issue from a commit 2026-03-02 15:36:14 +00:00

Merge pull request 'fix(csp): skip restrictive CSP on Wagtail/Django admin paths' (#25) from fix/csp-wagtail-admin into main

Sign in to join this conversation.

Reviewers

No Reviewers

Labels

No items

No Label

Milestone

No items

No Milestone

Projects

Clear projects

No project

Assignees

Clear assignees

claude codex_a codex_b codex_c mark

No Assignees

1 Participants

Notifications

Subscribe

Due Date

No due date set.

Dependencies

No dependencies set.

Reference: nohype/main-site#25