mirrors
/
devdocs
mirror of https://github.com/freeCodeCamp/devdocs
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Fix missing nonce in production CSP

Browse Source
pull/417/head
Thibaut Courouble 9 years ago
parent 481233050d
commit 6428cee512
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File

2
lib/app.rb
Unescape View File

@ -73,7 +73,7 @@ class App < Sinatra::Application
configure :production do
set :static, false
set :docs_host, '//docs.devdocs.io'
set :csp, "default-src 'self' *; script-src 'self' http://cdn.devdocs.io https://cdn.devdocs.io https://www.google-analytics.com https://secure.gaug.es http://*.jquery.com https://*.jquery.com; font-src data:; style-src 'self' 'unsafe-inline' *; img-src 'self' * data:;"
set :csp, "default-src 'self' *; script-src 'self' 'nonce-devdocs' http://cdn.devdocs.io https://cdn.devdocs.io https://www.google-analytics.com https://secure.gaug.es http://*.jquery.com https://*.jquery.com; font-src data:; style-src 'self' 'unsafe-inline' *; img-src 'self' * data:;"
use Rack::ConditionalGet
use Rack::ETag

Write Preview
Loading…
Cancel
Save