Skip to content
Snippets Groups Projects
Commit e0159670 authored by Fabrice Gangler's avatar Fabrice Gangler :art:
Browse files

FIX(webstat): add CSP connect-src directive for Matomo

parent 59984553
No related branches found
No related tags found
No related merge requests found
Hide whitespace changes
Inline Side-by-side
.gitlab/ci/build_additional_files/.htaccess
+ 1
1
View file @ e0159670
......@@ -59,7 +59,7 @@ ErrorDocument 404 /404.html
Header always set Strict-Transport-Security: max-age=15768000
## Content-Security-Policy (CSP)
Header set Content-Security-Policy "default-src 'none'; style-src 'self'; img-src 'self' https://statistiques.adullact.org ; script-src 'self' https://statistiques.adullact.org 'sha256-Oj7byVaFtnTXnxkJUhS8WcENCO4gmFgzKQ47r9DQhcU='; base-uri 'self'; connect-src 'self'; font-src 'self'; form-action 'self'; manifest-src 'self'; media-src 'self'; object-src 'none'; worker-src 'none'; frame-src 'none'; frame-ancestors 'none'; report-uri https://c2680d76820a734f351b76296ae60321.report-uri.com/r/d/csp/enforce;"
Header set Content-Security-Policy "default-src 'none'; style-src 'self'; img-src 'self' https://statistiques.adullact.org ; script-src 'self' https://statistiques.adullact.org/matomo.js 'sha256-Oj7byVaFtnTXnxkJUhS8WcENCO4gmFgzKQ47r9DQhcU='; base-uri 'self'; connect-src 'self' https://statistiques.adullact.org/matomo.php ; font-src 'self'; form-action 'self'; manifest-src 'self'; media-src 'self'; object-src 'none'; worker-src 'none'; frame-src 'none'; frame-ancestors 'none'; report-uri https://c2680d76820a734f351b76296ae60321.report-uri.com/r/d/csp/enforce;"
</ifModule>
######################################################################################
......
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment