github-forks
/
success
mirror of https://github.com/excalidraw/excalidraw.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Add Content Security Policy Header Tag (#1379)

Browse Source 
* Add Content Security Policy Header Tag

* Update CSP for connect-src with https, wss
pull/1389/head
Shriram Balaji 5 years ago committed by GitHub
parent a3fd464702
commit af09c977bf
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 4 additions and 1 deletions
Show Stats Download Patch File Download Diff File

5
public/index.html
Unescape Escape View File

@ -62,7 +62,10 @@
/> />
<!-- OG tags require absolute url for images --> <!-- OG tags require absolute url for images -->
<meta name="twitter:image" content="https://excalidraw.com/og-image.png" /> <meta name="twitter:image" content="https://excalidraw.com/og-image.png" />
<meta
http-equiv="Content-Security-Policy"
content="block-all-mixed-content; child-src 'none'; connect-src https: wss:; default-src 'self'; font-src 'self' data: https: filesystem:; img-src 'self' data: https:; script-src 'self' 'unsafe-inline' https://www.googletagmanager.com https://www.google-analytics.com; style-src 'self' 'unsafe-inline' https:;"
/>
<link rel="shortcut icon" href="favicon.ico" type="image/x-icon" /> <link rel="shortcut icon" href="favicon.ico" type="image/x-icon" />
<link rel="stylesheet" href="fonts.css" /> <link rel="stylesheet" href="fonts.css" />
<link <link

Write Preview
Loading…
Cancel
Save