changed CSP quotes
This commit is contained in:
parent
5ce0846580
commit
6970e9228a
@ -35,24 +35,24 @@ app.use(helmet());
|
|||||||
app.use(
|
app.use(
|
||||||
helmet.contentSecurityPolicy({
|
helmet.contentSecurityPolicy({
|
||||||
directives: {
|
directives: {
|
||||||
defaultSrc: ['"self"'],
|
defaultSrc: ["'self'"],
|
||||||
connectSrc: [
|
connectSrc: [
|
||||||
'"self"',
|
"'self'",
|
||||||
'https://sentry.prod.mozaws.net',
|
'https://sentry.prod.mozaws.net',
|
||||||
'https://www.google-analytics.com',
|
'https://www.google-analytics.com',
|
||||||
'https://ssl.google-analytics.com'
|
'https://ssl.google-analytics.com'
|
||||||
],
|
],
|
||||||
imgSrc: [
|
imgSrc: [
|
||||||
'"self"',
|
"'self'",
|
||||||
'https://www.google-analytics.com',
|
'https://www.google-analytics.com',
|
||||||
'https://ssl.google-analytics.com'
|
'https://ssl.google-analytics.com'
|
||||||
],
|
],
|
||||||
scriptSrc: ['"self"', 'https://ssl.google-analytics.com'],
|
scriptSrc: ["'self'", 'https://ssl.google-analytics.com'],
|
||||||
styleSrc: ['"self"', 'https://code.cdn.mozilla.net'],
|
styleSrc: ["'self'", 'https://code.cdn.mozilla.net'],
|
||||||
fontSrc: ['"self"', 'https://code.cdn.mozilla.net'],
|
fontSrc: ["'self'", 'https://code.cdn.mozilla.net'],
|
||||||
formAction: ['"none"'],
|
formAction: ["'none'"],
|
||||||
frameAncestors: ['"none"'],
|
frameAncestors: ["'none'"],
|
||||||
objectSrc: ['"none"']
|
objectSrc: ["'none'"]
|
||||||
}
|
}
|
||||||
})
|
})
|
||||||
);
|
);
|
||||||
|
Loading…
Reference in New Issue
Block a user