Fix Referrer-Policy #443

2026-03-13 00:07:22 +00:00 · 2023-04-19 20:45:39 +02:00 · 2023-04-19 20:45:39 +02:00 · 376f44d5e6
commit 376f44d5e6
parent fefa8ca077
1 changed files with 1 additions and 1 deletions
--- a/project/requests.py
+++ b/project/requests.py
@ -33,5 +33,5 @@ def set_response_headers(response):
    response.headers["Referrer-Policy"] = "strict-origin-when-cross-origin"
    response.headers[
        "Content-Security-Policy"
-    ] = "default-src 'self'; script-src 'self' 'unsafe-eval' 'unsafe-inline'; style-src 'self' 'unsafe-eval' 'unsafe-inline'; img-src 'self' blob: data: *.openstreetmap.org;"
+    ] = "default-src 'self'; script-src 'self' 'unsafe-eval' 'unsafe-inline'; style-src 'self' 'unsafe-eval' 'unsafe-inline'; img-src 'self' blob: data: *.openstreetmap.org; connect-src blob: data:;"
    return response