Skip to content

Commit

Permalink
fix: Content-Security-Policy
Browse files Browse the repository at this point in the history
  • Loading branch information
@taorepoara
taorepoara committed Aug 22, 2023
1 parent 98aa5a5 commit 4ac07de
Showing 1 changed file with 1 addition and 1 deletion.
2 changes: 1 addition & 1 deletion nginx.conf
View file
Original file line number Diff line number Diff line change
Expand Up @@ -10,7 +10,7 @@ server {
charset utf-8;
charset_types text/css application/javascript;
add_header Strict-Transport-Security "max-age=31536000; includeSubDomains" always;
add_header Content-Security-Policy "default-src 'self' 'unsafe-inline' 'wasm-unsafe-eval' 'unsafe-eval' lenra.io *.lenra.io https://www.gstatic.com/flutter-canvaskit/ wss://*.lenra.io; font-src https://fonts.gstatic.com/; object-src 'none'; base-uri 'self';";
add_header Content-Security-Policy "default-src 'self' 'unsafe-inline' 'wasm-unsafe-eval' 'unsafe-eval' lenra.io *.lenra.io https://www.gstatic.com/flutter-canvaskit/ https://fonts.gstatic.com/ wss://*.lenra.io; object-src 'none'; base-uri 'self';";
add_header Vary "Accept-Encoding";
add_header X-Content-Type-Options "nosniff";
add_header X-Frame-Options "DENY";
Expand Down

0 comments on commit 4ac07de

Please sign in to comment.