htwkmooc/codeocean
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

[CSP] Allow 'self' as base-uri

Browse Source
This commit is contained in:
Sebastian Serth
2022-09-07 21:41:09 +02:00
parent d1ab0a6d86
commit 0d40cdd03a
1 changed files with 1 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
config/initializers/content_security_policy.rb
View File

@ -33,7 +33,7 @@ end
Rails.application.config.content_security_policy do |policy|
policy.default_src :none
policy.base_uri :none
policy.base_uri :self
policy.font_src :self
# Code executions might return a base64 encoded image as a :data URI
policy.img_src :self, :data