summaryrefslogtreecommitdiff
diff options
context:
space:
mode:
authorJan Dittberner <jandd@cacert.org>2020-06-06 23:35:50 +0200
committerJan Dittberner <jandd@cacert.org>2020-06-06 23:36:21 +0200
commit787cf90126543988554191c43391f2ac496c6124 (patch)
tree2d1d34a49346c021a9295cbcf923aeae2452624b
parent6b76f18c067a29039bd813825238862c8ae0c415 (diff)
downloadcacert-puppet-787cf90126543988554191c43391f2ac496c6124.tar.gz
cacert-puppet-787cf90126543988554191c43391f2ac496c6124.tar.xz
cacert-puppet-787cf90126543988554191c43391f2ac496c6124.zip
Fix Content-Security-Policy for community.cacert.org
-rw-r--r--hieradata/nodes/webstatic.yaml2
1 files changed, 1 insertions, 1 deletions
diff --git a/hieradata/nodes/webstatic.yaml b/hieradata/nodes/webstatic.yaml
index d37a582..497cab4 100644
--- a/hieradata/nodes/webstatic.yaml
+++ b/hieradata/nodes/webstatic.yaml
@@ -171,7 +171,7 @@ profiles::static_websites::apache_vhosts:
- 'set Pragma "no-cache"'
- 'set Expires "-1"'
- 'set X-Permitted-Cross-Domain-Policies "master-only"'
- - "set Content-Security-Policy \"default-src 'none'; script-src 'self'; img-src 'self'; style-src 'self'; connect-src 'self';\""
+ - "set Content-Security-Policy \"default-src 'none'; font-src 'self'; script-src 'self'; img-src 'self'; style-src 'self' 'unsafe-inline'; connect-src 'self';\""
'infradocs.cacert.org':
port: 80
access_log: true