Skip to content
Snippets Groups Projects
Commit be14684b authored by Fabrice Gangler's avatar Fabrice Gangler :art:
Browse files

CHORE: enable CSP headers

parent d3bb30cc
No related branches found
No related tags found
No related merge requests found
Hide whitespace changes
Inline Side-by-side
.gitlab/ci/build_additional_files/.htaccess
+ 1
1
View file @ be14684b
......@@ -42,7 +42,7 @@ ErrorDocument 404 /404.html
Header always set Strict-Transport-Security: max-age=15768000
## Content-Security-Policy (CSP)
# Header set Content-Security-Policy "default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'; base-uri 'self'; connect-src 'self'; font-src 'self'; manifest-src 'self'; media-src 'self'; worker-src 'none'; frame-src 'none'; frame-ancestors 'none';"
Header set Content-Security-Policy "default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'; base-uri 'self'; connect-src 'self'; font-src 'self'; manifest-src 'self'; media-src 'self'; worker-src 'none'; frame-src 'none'; frame-ancestors 'none';"
</ifModule>
######################################################################################
......
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment