ajurna/cbwebreader
1
0
Fork 0
mirror of https://github.com/ajurna/cbwebreader.git synced 2025-12-06 06:17:17 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity

adding csp

Browse Source
This commit is contained in:
Ajurna
2021-04-29 23:07:57 +01:00
parent c8ffb55bbe
commit 5eecbf1075
3 changed files with 26 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
cbreader/settings/base.py
View File

@@ -50,6 +50,7 @@ MIDDLEWARE = [
"django.contrib.auth.middleware.AuthenticationMiddleware",
"django.contrib.messages.middleware.MessageMiddleware",
"django.middleware.clickjacking.XFrameOptionsMiddleware",
'csp.middleware.CSPMiddleware',
]
ROOT_URLCONF = "cbreader.urls"
@@ -144,4 +145,7 @@ BOOTSTRAP4 = {
"integrity": "sha384-Piv4xVNRyMGpqkS2by6br4gNJ7DXjqk09RmUpJ8jgGtD7zP9yug3goQfGII0yAns",
"crossorigin": "anonymous",
},
}
}
CSP_DEFAULT_SRC = ("'self'", "'unsafe-inline'", 'cdn.jsdelivr.net', 'cdn.datatables.net', 'i.creativecommons.org',
'code.jquery.com', 'licensebuttons.net', 'www.w3.org')
CSP_IMG_SRC = ("'self'", 'i.creativecommons.org', 'licensebuttons.net')