Long header

2022-10-20 21:19:21 -04:00 · 2022-10-20 21:19:21 -04:00 · 7c57ebfd90
parent 0f53356f4c
commit 7c57ebfd90
1 changed files with 1 additions and 10 deletions
--- a/headers/production
+++ b/headers/production
@ -12,13 +12,4 @@
  # content security policy
  # style-src 'unsafe-inline': syntax highlighting in codefences
  # sandbox allow-popups: enable target="_blank" links to open in new tabs
-  Content-Security-Policy: default-src 'none'
-  Content-Security-Policy: img-src 'self' https://mat.services https://stats.mat.services
-  Content-Security-Policy: style-src 'self' https://mat.services 'unsafe-inline'
-  Content-Security-Policy: font-src 'self' https://mat.services
-  Content-Security-Policy: script-src 'self' https://mat.services https://stats.mat.services
-  Content-Security-Policy: form-action 'none'
-  Content-Security-Policy: frame-ancestors 'none'
-  Content-Security-Policy: base-uri 'none'
-  Content-Security-Policy: upgrade-insecure-requests
-  Content-Security-Policy: sandbox allow-same-origin allow-scripts allow-popups allow-popups-to-escape-sandbox
+  Content-Security-Policy: default-src 'none'; img-src 'self' https://mat.services https://stats.mat.services; style-src 'self' https://mat.services 'unsafe-inline'; font-src 'self' https://mat.services; script-src 'self' https://mat.services https://stats.mat.services; form-action 'none'; frame-ancestors 'none'; base-uri 'none'; upgrade-insecure-requests; sandbox allow-same-origin allow-scripts allow-popups allow-popups-to-escape-sandbox