master
Aevann1 2021-12-08 20:27:05 +02:00
parent dd726be4c9
commit c913516ec4
1 changed files with 1 additions and 1 deletions

View File

@ -125,7 +125,7 @@ def after_request(response):
response.headers.add("Strict-Transport-Security", "max-age=31536000") response.headers.add("Strict-Transport-Security", "max-age=31536000")
response.headers.add("X-Frame-Options", "deny") response.headers.add("X-Frame-Options", "deny")
response.headers.add("Content-Security-Policy", "script-src 'self' 'unsafe-inline' 'unsafe-eval' ajax.cloudflare.com static.cloudflareinsights.com; connect-src 'self' cloudflareinsights.co *.pusher.com;") response.headers.add("Content-Security-Policy", "script-src 'self' 'unsafe-inline' 'unsafe-eval' ajax.cloudflare.com static.cloudflareinsights.com; connect-src 'self' cloudflareinsights.co *.pusher.com;object-src 'none';")
return response return response