Only add CSP on CI section when on SaaS
The following discussion from !84342 (merged) should be addressed:
-
@mkaeppler
started a discussion: (+8 comments)A few questions about this:
- This seems to be dealing with the Zuora integration. Is this specific to pipelines, or should this live in a shared concern instead that we can include in controllers? As a reader, it surprises me to see this here since on the surface it does not seem to have anything to do with how pipelines are served.
- While this has test coverage, would it make sense to test this explicitly in
pipeline_controller_spec
, or is this covered through frontend tests?
Edited by Matthias Käppler