forked from rDrama/rDrama
try to serve turnstile script
parent
ac4a2c8ff7
commit
fc18ce9c8e
File diff suppressed because one or more lines are too long
|
@ -118,6 +118,6 @@
|
||||||
{% block scripts %}
|
{% block scripts %}
|
||||||
<script defer src="{{'js/signup.js' | asset}}"></script>
|
<script defer src="{{'js/signup.js' | asset}}"></script>
|
||||||
{% if turnstile != DEFAULT_CONFIG_VALUE %}
|
{% if turnstile != DEFAULT_CONFIG_VALUE %}
|
||||||
<script defer src="https://challenges.cloudflare.com/turnstile/v0/api.js"></script>
|
<script defer src="/assets/js/turnstile.js"></script>
|
||||||
{% endif %}
|
{% endif %}
|
||||||
{% endblock %}
|
{% endblock %}
|
||||||
|
|
|
@ -2,4 +2,4 @@ add_header Referrer-Policy "same-origin";
|
||||||
add_header Strict-Transport-Security "max-age=31536000; includeSubDomains; preload";
|
add_header Strict-Transport-Security "max-age=31536000; includeSubDomains; preload";
|
||||||
add_header X-Frame-Options "deny";
|
add_header X-Frame-Options "deny";
|
||||||
add_header X-Content-Type-Options "nosniff";
|
add_header X-Content-Type-Options "nosniff";
|
||||||
add_header Content-Security-Policy "script-src 'self' 'unsafe-inline' challenges.cloudflare.com rdrama.net; connect-src 'self' tls-use1.fpapi.io api.fpjs.io; object-src 'none';";
|
add_header Content-Security-Policy "script-src 'self' 'unsafe-inline' rdrama.net; connect-src 'self' tls-use1.fpapi.io api.fpjs.io; object-src 'none';";
|
||||||
|
|
Loading…
Reference in New Issue