Skip to content

Commit

Permalink
Merge pull request #1358 from origo-map/csp-prod
Browse files Browse the repository at this point in the history
Comment out CSP and added text on use for production system.
  • Loading branch information
johnnyblasta authored Oct 1, 2021
2 parents 61482be + eec9aef commit 609a8f6
Showing 1 changed file with 4 additions and 2 deletions.
6 changes: 4 additions & 2 deletions index.html
Original file line number Diff line number Diff line change
Expand Up @@ -4,8 +4,10 @@
<meta charset="utf-8">
<meta name="viewport" content="width=device-width, initial-scale=1.0, user-scalable=no">
<meta http-equiv="X-UA-Compatible" content="IE=Edge;chrome=1">
<meta http-equiv="Content-Security-Policy" content="default-src 'none'; img-src * data:; script-src 'self' 'unsafe-inline' 'unsafe-eval'; connect-src 'self'; style-src 'unsafe-inline'; style-src-elem 'self' 'unsafe-inline'; base-uri 'self'; form-action 'self';">
<meta name="referrer" content="same-origin">
<!-- On production systems a Content-Security-Policy and referrer meta-tag should be added, see below.
The CSP should be modified with adding specific sources that should be allowed, f.e. connect-src 'self' webanalysis.example.com geospatialdata.example.com; -->
<!-- <meta http-equiv="Content-Security-Policy" content="default-src 'none'; img-src * data:; script-src 'self' 'unsafe-inline' 'unsafe-eval'; connect-src 'self'; style-src 'self' 'unsafe-inline'; style-src-elem 'self' 'unsafe-inline'; base-uri 'self'; form-action 'self';">
<meta name="referrer" content="same-origin"> -->
<title>Origo exempel</title>
<link href="css/style.css" rel="stylesheet">
<link rel="shortcut icon" href="img/png/logo.png">
Expand Down

0 comments on commit 609a8f6

Please sign in to comment.