ajurna/cbwebreader
1
0
Fork 0
mirror of https://github.com/ajurna/cbwebreader.git synced 2025-12-06 06:17:17 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity

adding csp

Browse Source
This commit is contained in:
Ajurna
2021-04-30 19:37:56 +01:00
parent 5eecbf1075
commit d21ec61f06
10 changed files with 71 additions and 67 deletions
Download Patch File Download Diff File Expand all files Collapse all files

10
cbreader/settings/base.py
View File

@@ -146,6 +146,10 @@ BOOTSTRAP4 = {
"crossorigin": "anonymous",
},
}
CSP_DEFAULT_SRC = ("'self'", "'unsafe-inline'", 'cdn.jsdelivr.net', 'cdn.datatables.net', 'i.creativecommons.org',
'code.jquery.com', 'licensebuttons.net', 'www.w3.org')
CSP_IMG_SRC = ("'self'", 'i.creativecommons.org', 'licensebuttons.net')
CSP_DEFAULT_SRC = ("'none'")
CSP_STYLE_SRC = ("'self'", 'cdn.jsdelivr.net', 'cdn.datatables.net')
CSP_IMG_SRC = ("'self'", "data:")
CSP_FONT_SRC = ("'self'")
CSP_SCRIPT_SRC = ("'self'", 'code.jquery.com', 'cdn.jsdelivr.net', 'cdn.datatables.net')
CSP_CONNECT_SRC = ("'self'")
CSP_INCLUDE_NONCE_IN = ['script-src']