chiark
/
gitweb
/
~bjharris
/
bedstead.git
/ commitdiff
commit
grep
author
committer
pickaxe
?
search:
re
summary
|
shortlog
|
log
|
commit
| commitdiff |
tree
raw
|
patch
| inline |
side by side
(parent:
da628c5
)
More restrictive content security policy for Web site
author
Ben Harris
<bjh21@bjh21.me.uk>
Sun, 12 Oct 2025 12:53:45 +0000
(13:53 +0100)
committer
Ben Harris
<bjh21@bjh21.me.uk>
Tue, 13 Jan 2026 21:42:18 +0000
(21:42 +0000)
.htaccess
patch
|
blob
|
history
diff --git
a/.htaccess
b/.htaccess
index c1bbf5592ba11f3766bb62eaf7f94a88771bd735..3200afd8ee7f36cac3e2bc5819a6df1fd2d9549b 100644
(file)
--- a/
.htaccess
+++ b/
.htaccess
@@
-6,4
+6,7
@@
AddType font/otf;outlines=CFF .otf
</FilesMatch>
AddOutputFilterByType DEFLATE application/xhtml+xml text/css font/otf \
text/plain text/x-csrc application/postscript
-Header set Content-Security-Policy "object-src 'none';"
+Header set Content-Security-Policy "form-action 'none';\
+ default-src 'none'; connect-src 'self'; font-src 'self'; img-src 'self';\
+ script-src 'self' 'unsafe-inline' 'wasm-unsafe-eval';\
+ style-src 'self' 'unsafe-inline'"
~bjharris / bedstead.git / commitdiff