/
Web.config
executable file
·43 lines (37 loc) · 1.49 KB
/
Web.config
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
<?xml version="1.0"?>
<!--
For more information on how to configure your ASP.NET application, please visit
http://go.microsoft.com/fwlink/?LinkId=169433
-->
<configuration>
<configSections>
<section name="contentSecurityPolicy" type="ContentSecurityPolicy.Net.Config.ContentSecurityPolicySection"/>
</configSections>
<contentSecurityPolicy reportUri="csp-reporting/">
<allowedSources allowSelf="true" />
<allowedImageSources>
<add source="https://*.cloudfront.net:443" />
</allowedImageSources>
<allowedObjectSources>
<add source="http://*.google.com" />
</allowedObjectSources>
<allowedScriptSources unsafeAllowEval="true">
<add source="http://erlend.oftedal.no" />
</allowedScriptSources>
<allowedStyleSources unsafeAllowInline="true">
<add source="http://erlend.oftedal.no" />
</allowedStyleSources>
<allowedFrameSources>
<add source="http://erlend.oftedal.no" />
</allowedFrameSources>
</contentSecurityPolicy>
<system.web>
<httpHandlers>
<add path="csp-reporting/" verb="POST" type="ContentSecurityPolicy.Net.WebTest.ReportHandler, ContentSecurityPolicy.Net.WebTest"/>
</httpHandlers>
<httpModules>
<add name="ContentSecurityPolicyHttpModule" type="ContentSecurityPolicy.Net.PolicyHttpModule, ContentSecurityPolicy.Net"/>
</httpModules>
<compilation debug="true" targetFramework="4.0" />
</system.web>
</configuration>