raggedstaff/openfoodnetwork
1
0
Fork 0
mirror of https://github.com/openfoodfoundation/openfoodnetwork synced 2026-03-18 04:39:14 +00:00
Code Issues Packages Projects Releases Wiki Activity

Add some whitelisting

Browse Source
This commit is contained in:
Matt-Yorkley
2022-01-03 09:38:28 +00:00
parent 0dd97a631e
commit 0fc6b4c882
1 changed files with 3 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
config/initializers/content_security_policy.rb
View File

@@ -6,10 +6,10 @@
Rails.application.config.content_security_policy do |policy|
policy.default_src :self, :https
policy.font_src :self, :https, :data
policy.img_src :self, :https, :data
policy.font_src :self, :https, :data, 'fonts.gstatic.com'
policy.img_src :self, :https, :data, '*.s3.amazonaws.com'
policy.object_src :none
policy.script_src :self, :https
policy.script_src :self, :https, "*.stripe.com", "openfoodnetwork.innocraft.cloud"
policy.style_src :self, :https
policy.connect_src :self, :https, "http://localhost:3035", "ws://localhost:3035" if Rails.env.development?