scout_ante/dashboard-v2
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

fix: Update CSP headers to have the correct domain

Browse Source
This commit is contained in:
Ben Hall 2025-01-06 21:34:50 +00:00 committed by GitHub
parent 8f5d68ab0d
commit 5139f790cc
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194
1 changed files with 2 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
frontend/public/_headers
View File

@ -1,6 +1,6 @@
/* /*
Content-Security-Policy: default-src 'none'; script-src 'self' 'unsafe-eval' https://static.cloudflareinsights.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://use.fontawesome.com; img-src 'self' https://cdn.discordapp.com https://media.discordapp.net https://image-cdn.ticketsbot.net; font-src https://fonts.googleapis.com https://fonts.gstatic.com https://use.fontawesome.com; connect-src https://api.ticketsbot.net wss://api.ticketsbot.net https://cloudflareinsights.com/cdn-cgi/rum; media-src https://cdn.discordapp.com https://media.discordapp.net; frame-src 'self' Content-Security-Policy: default-src 'none'; script-src 'self' 'unsafe-eval' https://static.cloudflareinsights.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://use.fontawesome.com; img-src 'self' https://cdn.discordapp.com https://media.discordapp.net https://image-cdn.ticketsbot.cloud; font-src https://fonts.googleapis.com https://fonts.gstatic.com https://use.fontawesome.com; connect-src https://api.ticketsbot.cloud wss://api.ticketsbot.cloud https://cloudflareinsights.com/cdn-cgi/rum; media-src https://cdn.discordapp.com https://media.discordapp.net; frame-src 'self'
/manage/*/transcripts/view/* /manage/*/transcripts/view/*
! Content-Security-Policy ! Content-Security-Policy
Content-Security-Policy: default-src 'none'; script-src 'self' 'unsafe-eval' 'unsafe-inline' https://static.cloudflareinsights.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://use.fontawesome.com https://cdnjs.cloudflare.com/ajax/libs/highlight.js/; img-src 'self' https://cdn.discordapp.com https://media.discordapp.net https://image-cdn.ticketsbot.net; font-src https://fonts.googleapis.com https://fonts.gstatic.com https://use.fontawesome.com; connect-src https://api.ticketsbot.net wss://api.ticketsbot.net https://cloudflareinsights.com/cdn-cgi/rum; media-src https://cdn.discordapp.com https://media.discordapp.net; frame-src 'self' Content-Security-Policy: default-src 'none'; script-src 'self' 'unsafe-eval' 'unsafe-inline' https://static.cloudflareinsights.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://use.fontawesome.com https://cdnjs.cloudflare.com/ajax/libs/highlight.js/; img-src 'self' https://cdn.discordapp.com https://media.discordapp.net https://image-cdn.ticketsbot.cloud; font-src https://fonts.googleapis.com https://fonts.gstatic.com https://use.fontawesome.com; connect-src https://api.ticketsbot.cloud wss://api.ticketsbot.cloud https://cloudflareinsights.com/cdn-cgi/rum; media-src https://cdn.discordapp.com https://media.discordapp.net; frame-src 'self'