Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[Angular] Allow usage with trusted types #614

Closed
timonmasberg opened this issue Jan 6, 2024 · 3 comments
Closed

[Angular] Allow usage with trusted types #614

timonmasberg opened this issue Jan 6, 2024 · 3 comments

Comments

@timonmasberg
Copy link

Currently, when using CSP with trusted types, an error will be thrown, since the IconService uses innerHTML. I propose a function for optional registering of a trusted policy to allow using trusted types.
@timonmasberg
Copy link
Author

you can utilize the default policy for this

@acomito
Copy link

acomito commented Feb 22, 2024

@timonmasberg Can you clarify? You set require-trusted-types-for to default?

@timonmasberg
Copy link
Author

require-trusted-types-for to default?

No, you can create a policy for "default", which allows you to sanitize the innerHTML calls from the IconService.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@acomito @timonmasberg