Ben Hall 0f2e892408 fix csp headers
Signed-off-by: Ben Hall <ben@benh.codes>
2025-02-19 11:30:22 +00:00

7 lines
1.4 KiB
Plaintext

/*
Content-Security-Policy: default-src 'none'; script-src 'self' 'unsafe-eval' https://static.cloudflareinsights.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://use.fontawesome.com; img-src 'self' https://cdn.discordapp.com https://media.discordapp.net https://image-cdn.ticketsbot.cloud; font-src https://fonts.googleapis.com https://fonts.gstatic.com https://use.fontawesome.com; connect-src https://s3.uk.io.cloud.ovh.net https://api.ticketsbot.cloud https://import-api.ticketsbot.cloud wss://api.ticketsbot.cloud https://cloudflareinsights.com/cdn-cgi/rum; media-src https://cdn.discordapp.com https://media.discordapp.net; frame-src 'self'
/manage/*/transcripts/view/*
! Content-Security-Policy
Content-Security-Policy: default-src 'none'; script-src 'self' 'unsafe-eval' 'unsafe-inline' https://static.cloudflareinsights.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://use.fontawesome.com https://cdnjs.cloudflare.com/ajax/libs/highlight.js/; img-src 'self' https://cdn.discordapp.com https://media.discordapp.net https://image-cdn.ticketsbot.cloud; font-src https://fonts.googleapis.com https://fonts.gstatic.com https://use.fontawesome.com; connect-src https://api.ticketsbot.cloud wss://api.ticketsbot.cloud https://cloudflareinsights.com/cdn-cgi/rum; media-src https://cdn.discordapp.com https://media.discordapp.net; frame-src 'self'