Llama-3.1-8B-DALv0.1
/
venv
/lib
/python3.12
/site-packages
/jupyter_server
/services
/security
/handlers.py
| """Tornado handlers for security logging.""" | |
| # Copyright (c) Jupyter Development Team. | |
| # Distributed under the terms of the Modified BSD License. | |
| from tornado import web | |
| from jupyter_server.auth.decorator import authorized | |
| from ...base.handlers import APIHandler | |
| from . import csp_report_uri | |
| AUTH_RESOURCE = "csp" | |
| class CSPReportHandler(APIHandler): | |
| """Accepts a content security policy violation report""" | |
| auth_resource = AUTH_RESOURCE | |
| _track_activity = False | |
| def skip_check_origin(self): | |
| """Don't check origin when reporting origin-check violations!""" | |
| return True | |
| def check_xsrf_cookie(self): | |
| """Don't check XSRF for CSP reports.""" | |
| return | |
| def post(self): | |
| """Log a content security policy violation report""" | |
| self.log.warning( | |
| "Content security violation: %s", | |
| self.request.body.decode("utf8", "replace"), | |
| ) | |
| default_handlers = [(csp_report_uri, CSPReportHandler)] | |