add CSP and gitea CSP (report only mode)

5 years ago · e0758ee12e
2 changed files with 2 additions and 0 deletions
--- a/conf.d/csp.conf
+++ b/conf.d/csp.conf
@ -0,0 +1 @@
				@@ -0,0 +1 @@
+add_header Content-Security-Policy-Report-Only "default-src 'self' 'unsafe-inline' 'unsafe-eval';";
--- a/conf.d/giteacsp.conf
+++ b/conf.d/giteacsp.conf
@ -0,0 +1 @@
				@@ -0,0 +1 @@
+add_header Content-Security-Policy-Report-Only "default-src 'self' 'unsafe-inline' 'unsafe-eval';";
				`@ -0,0 +1 @@` @@ -0,0 +1 @@
				`add_header Content-Security-Policy-Report-Only "default-src 'self' 'unsafe-inline' 'unsafe-eval';";`