Skip to content

Commit

Permalink
✨[#46] remove CDN links
Browse files Browse the repository at this point in the history
  • Loading branch information
@Coperh
Coperh committed Sep 23, 2024
1 parent 91abb7a commit 855f7b5
Showing 1 changed file with 2 additions and 1 deletion.
3 changes: 2 additions & 1 deletion open_api_framework/conf/base.py
View file
Original file line number Diff line number Diff line change
Expand Up @@ -999,7 +999,7 @@ def init_sentry(before_send: Callable | None = None):

CSP_IMG_SRC = (
CSP_DEFAULT_SRC
+ ["data:", "cdn.redoc.ly", "cdn.jsdelivr.net"] # used by DRF spectacular
+ ["data:"] # used by DRF spectacular
+ config(
"CSP_EXTRA_IMG_SRC",
default=[],
Expand Down Expand Up @@ -1028,6 +1028,7 @@ def init_sentry(before_send: Callable | None = None):
CSP_SCRIPT_SRC = CSP_DEFAULT_SRC + ["'unsafe-inline'"]
CSP_FONT_SRC = ("'self'", "fonts.gstatic.com")
CSP_WORKER_SRC = ("'self'", "blob:")
CSP_CONNECT_SRC = CSP_DEFAULT_SRC + ["raw.githubusercontent.com"]

# firefox does not get the nonce from default-src, see
# https://stackoverflow.com/a/63376012
Expand Down

0 comments on commit 855f7b5

Please sign in to comment.