TerribleDev/blog.terrible.dev
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

do not block anything

Browse Source
This commit is contained in:
tparnell
2019-02-03 20:22:21 -05:00
parent 57a8bba66a
commit 38f82061e9
1 changed files with 11 additions and 11 deletions
Download Patch File Download Diff File Expand all files Collapse all files

22
src/TerribleDev.Blog.Web/Startup.cs
View File

@@ -98,17 +98,17 @@ namespace TerribleDev.Blog.Web
app.UseContentSecurityPolicy(
new ContentSecurityPolicy()
{
DefaultSrc = new HashSet<string>() {
CSPConstants.Self, "https://www.google-analytics.com", "https://www.googletagmanager.com", "https://stats.g.doubleclick.net"
},
ScriptSrc = new HashSet<string>()
{
CSPConstants.Self, CSPConstants.UnsafeInline, "https://www.google-analytics.com", "https://www.googletagmanager.com", "https://stats.g.doubleclick.net"
},
StyleSrc = new HashSet<string>()
{
CSPConstants.Self, CSPConstants.UnsafeInline
},
// DefaultSrc = new HashSet<string>() {
// CSPConstants.Self, "https://www.google-analytics.com", "https://www.googletagmanager.com", "https://stats.g.doubleclick.net"
// },
// ScriptSrc = new HashSet<string>()
// {
// CSPConstants.Self, CSPConstants.UnsafeInline, "https://www.google-analytics.com", "https://www.googletagmanager.com", "https://stats.g.doubleclick.net"
// },
// StyleSrc = new HashSet<string>()
// {
// CSPConstants.Self, CSPConstants.UnsafeInline
// },
UpgradeInsecureRequests = true
});
app.UseOutputCaching();