Skip to content
This repository has been archived by the owner on May 5, 2021. It is now read-only.

Commit

Permalink
chore: fix kitsu.io exclusion in CSP
Browse files Browse the repository at this point in the history
  • Loading branch information
@wopian
wopian committed Dec 24, 2017
1 parent 001d1d5 commit 7e8ba94
Showing 1 changed file with 3 additions and 3 deletions.
6 changes: 3 additions & 3 deletions static/_headers
View file
@@ -1,7 +1,7 @@
/*
Content-Security-Policy: default-src 'self' data: https://*.kitsu.io; script-src 'self' 'unsafe-inline' 'unsafe-eval'; object-src 'none'; style-src 'self' 'unsafe-inline'; img-src https:; media-src https:; frame-src 'none'; font-src https:
X-Content-Security-Policy: default-src 'self' data: https://*.kitsu.io; script-src 'self' 'unsafe-inline' 'unsafe-eval'; object-src 'none'; style-src 'self' 'unsafe-inline'; img-src https:; media-src https:; frame-src 'none'; font-src https:
X-WebKit-CSP: default-src 'self' data: https://*.kitsu.io; script-src 'self' 'unsafe-inline' 'unsafe-eval'; object-src 'none'; style-src 'self' 'unsafe-inline'; img-src https:; media-src https:; frame-src 'none'; font-src https:
Content-Security-Policy: default-src 'self' data: https://kitsu.io; script-src 'self' 'unsafe-inline' 'unsafe-eval'; object-src 'none'; style-src 'self' 'unsafe-inline'; img-src https:; media-src https:; frame-src 'none'; font-src https:
X-Content-Security-Policy: default-src 'self' data: https://kitsu.io; script-src 'self' 'unsafe-inline' 'unsafe-eval'; object-src 'none'; style-src 'self' 'unsafe-inline'; img-src https:; media-src https:; frame-src 'none'; font-src https:
X-WebKit-CSP: default-src 'self' data: https://kitsu.io; script-src 'self' 'unsafe-inline' 'unsafe-eval'; object-src 'none'; style-src 'self' 'unsafe-inline'; img-src https:; media-src https:; frame-src 'none'; font-src https:
X-Frame-Options: SAMEORIGIN
X-Xss-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Expand Down

0 comments on commit 7e8ba94

Please sign in to comment.