From 0f53356f4c6eb1b94dce99908719ccf27987d5ea Mon Sep 17 00:00:00 2001
From: mat ess <mat@mat.services>
Date: Thu, 20 Oct 2022 21:14:01 -0400
Subject: [PATCH] Text prod headers fix 2 electric boogaloo

---
 headers/production | 11 ++++++++++-
 1 file changed, 10 insertions(+), 1 deletion(-)

diff --git a/headers/production b/headers/production
index 97a2066..521210b 100644
--- a/headers/production
+++ b/headers/production
@@ -12,4 +12,13 @@
   # content security policy
   # style-src 'unsafe-inline': syntax highlighting in codefences
   # sandbox allow-popups: enable target="_blank" links to open in new tabs
-  Content-Security-Policy: default-src 'none';
+  Content-Security-Policy: default-src 'none'
+  Content-Security-Policy: img-src 'self' https://mat.services https://stats.mat.services
+  Content-Security-Policy: style-src 'self' https://mat.services 'unsafe-inline'
+  Content-Security-Policy: font-src 'self' https://mat.services
+  Content-Security-Policy: script-src 'self' https://mat.services https://stats.mat.services
+  Content-Security-Policy: form-action 'none'
+  Content-Security-Policy: frame-ancestors 'none'
+  Content-Security-Policy: base-uri 'none'
+  Content-Security-Policy: upgrade-insecure-requests
+  Content-Security-Policy: sandbox allow-same-origin allow-scripts allow-popups allow-popups-to-escape-sandbox