QT/superset2
1
0
Fork 0
mirror of https://github.com/apache/superset.git synced 2026-04-07 18:35:15 +00:00
Code Issues Packages Projects Releases Wiki Activity

fix(docs): even more CSP adjustments... (#27278)

Browse Source
This commit is contained in:
Evan Rusackas
2024-02-27 15:53:00 -07:00
committed by GitHub
parent e0ca07ba52
commit c320b95be9
1 changed files with 2 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

3
docs/static/.htaccess vendored
View File

@@ -22,7 +22,7 @@ RewriteRule ^(.*)$ https://superset.apache.org/$1 [R,L]
RewriteCond %{HTTP_HOST} ^superset.incubator.apache.org$ [NC]
RewriteRule ^(.*)$ https://superset.apache.org/$1 [R=301,L]
Header set Content-Security-Policy "default-src 'self'; img-src *;"
# Header set Content-Security-Policy "default-src 'self'; img-src *;"
Header set Content-Security-Policy "default-src 'self'; \
script-src 'self'; \
@@ -30,6 +30,7 @@ img-src 'self' https://static.scarf.sh *; \
style-src 'self' https://fonts.googleapis.com; \
script-src-elem 'self' 'unsafe-inline' https://www.googletagmanager.com https://www.google-analytics.com; \
style-src-elem 'self' 'unsafe-inline' https://fonts.googleapis.com https://analytics.apache.org https://www.bugherd.com; \
frame-ancestors 'self' https://preset.io; \
font-src 'self' https://fonts.gstatic.com; \
frame-src 'self' https://calendar.google.com https://preset.io https://sidebar.bugherd.com https://unpkg.com; \
"