nick
/
tabi-test
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

📝 docs: add `data:` to CSP to load local svg

Browse Source
main
welpo 2 years ago
parent 9512bbb194
commit 3b22e6be6c
No known key found for this signature in database
GPG Key ID: A2F978CF4EC1F5A6
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File

2
theme.toml
Unescape Escape View File

@ -44,7 +44,7 @@ menu = [
# Default config, allows for https remote images and embedding YouTube and Vimeo content. # Default config, allows for https remote images and embedding YouTube and Vimeo content.
# This configuration (along with the right webserver settings) gets an A+ in Mozilla's Observatory: https://observatory.mozilla.org # This configuration (along with the right webserver settings) gets an A+ in Mozilla's Observatory: https://observatory.mozilla.org
allowed_domains = [ allowed_domains = [
{ directive = "img-src", domains = ["'self'", "https://*"] }, { directive = "img-src", domains = ["'self'", "https://*", "data:"] },
{ directive = "script-src", domains = ["'self'"] }, { directive = "script-src", domains = ["'self'"] },
{ directive = "style-src", domains = ["'self'"] }, { directive = "style-src", domains = ["'self'"] },
{ directive = "frame-src", domains = ["player.vimeo.com", "https://www.youtube-nocookie.com"] }, { directive = "frame-src", domains = ["player.vimeo.com", "https://www.youtube-nocookie.com"] },

Write Preview
Loading…
Cancel
Save