Fixed CSP

2023-10-01 22:43:00 +02:00 · 2023-10-01 22:43:00 +02:00 · 8d25e818d6
commit 8d25e818d6
parent eae2953e7c
1 changed files with 1 additions and 1 deletions
--- a/deploy/headers_secure.conf
+++ b/deploy/headers_secure.conf
@ -4,7 +4,7 @@ add_header X-XSS-Protection "1; mode=block";
 add_header X-Content-Type-Options nosniff;
 add_header Referrer-Policy strict-origin;
 add_header Cache-Control no-transform;
-add_header Content-Security-Policy "script-src 'self'";
+add_header Content-Security-Policy "script-src 'unsafe-inline'";
 add_header Permissions-Policy "accelerometer=(), camera=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), payment=(), usb=()";
 # 6 months HSTS pinning
 add_header Strict-Transport-Security max-age=16000000;