LemmyNet
/
lemmy-ui
mirror of https://github.com/LemmyNet/lemmy-ui.git
2
0
Fork 0
Code Issues Projects Releases Wiki Activity

Adding a content security policy. Fixes #20

This commit is contained in:
Dessalines 2020-11-23 11:41:57 -06:00
parent b1e283d5de
commit 235a6f2abe
1 changed files with 3 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
src/server/index.tsx
View File

@ -101,6 +101,9 @@ server.get('/*', async (req, res) => {
<meta charset="utf-8">
<meta name="viewport" content="width=device-width, initial-scale=1, shrink-to-fit=no">
<!-- Content Security Policy -->
<meta http-equiv="Content-Security-Policy" content="default-src 'none'; connect-src 'self'; frame-src *; img-src *; script-src 'self' 'unsafe-inline'; style-src 'self' 'unsafe-inline'">
<!-- Web app manifest -->
<link rel="manifest" href="/static/assets/manifest.webmanifest">