Skip to content

Commit

Permalink
csp test
Browse files Browse the repository at this point in the history
  • Loading branch information
jekuer committed Sep 22, 2023
1 parent 669432f commit c7a28a7
Showing 1 changed file with 12 additions and 0 deletions.
12 changes: 12 additions & 0 deletions demo/nuxt.config.ts
Original file line number Diff line number Diff line change
Expand Up @@ -44,6 +44,18 @@ export default defineNuxtConfig({
crossOriginOpenerPolicy: 'same-origin',
crossOriginEmbedderPolicy: 'unsafe-none',
// the following needs to match the settings in ./public/staticwebapp.config.json
contentSecurityPolicy: {
'base-uri': ["'self'"],
'font-src': ["'self' data:"],
'form-action': ["'self'"],
'frame-ancestors': ["'self'"],
'img-src': ["'self' https://add-to-calendar-button.com data:"],
'object-src': ["'none'"],
'script-src-attr': ["'self'"],
'script-src': ["'self' 'unsafe-inline' https://*.add-to-calendar-button.com"],
'style-src': ["'self' 'unsafe-inline' https://add-to-calendar-button.com"],
//'upgrade-insecure-requests': true,
},
referrerPolicy: 'strict-origin-when-cross-origin',
strictTransportSecurity: {
maxAge: 31536000,
Expand Down

0 comments on commit c7a28a7

Please sign in to comment.