From 376f44d5e641e2574a3f28cef4167087ca8003f8 Mon Sep 17 00:00:00 2001
From: Daniel Grams <grams.daniel@gmail.com>
Date: Wed, 19 Apr 2023 20:45:39 +0200
Subject: [PATCH] Fix Referrer-Policy #443

---
 project/requests.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/project/requests.py b/project/requests.py
index adaa48a..ccf4224 100644
--- a/project/requests.py
+++ b/project/requests.py
@@ -33,5 +33,5 @@ def set_response_headers(response):
     response.headers["Referrer-Policy"] = "strict-origin-when-cross-origin"
     response.headers[
         "Content-Security-Policy"
-    ] = "default-src 'self'; script-src 'self' 'unsafe-eval' 'unsafe-inline'; style-src 'self' 'unsafe-eval' 'unsafe-inline'; img-src 'self' blob: data: *.openstreetmap.org;"
+    ] = "default-src 'self'; script-src 'self' 'unsafe-eval' 'unsafe-inline'; style-src 'self' 'unsafe-eval' 'unsafe-inline'; img-src 'self' blob: data: *.openstreetmap.org; connect-src blob: data:;"
     return response