Skip to content

Commit

Permalink
fix: iframe security blob (#5227)
Browse files Browse the repository at this point in the history 
* feat: prendre referer au lieu de src_url

* Revert "feat: prendre referer au lieu de src_url"

This reverts commit 5516d3c.

* fix: iframe csp pour telechargement modele

---------

Co-authored-by: Victor Zeinstra <[email protected]>
  • Loading branch information
@Viczei
Viczei and Victor Zeinstra authored Jun 21, 2023
1 parent c59c699 commit b6c1bd1
Showing 1 changed file with 1 addition and 1 deletion.
2 changes: 1 addition & 1 deletion packages/code-du-travail-frontend/next.config.js
View file
Original file line number Diff line number Diff line change
Expand Up @@ -8,7 +8,7 @@ img-src 'self' data: *.fabrique.social.gouv.fr https://travail-emploi.gouv.fr ht
script-src 'self' https://mon-entreprise.urssaf.fr *.fabrique.social.gouv.fr https://cdnjs.cloudflare.com ${
process.env.NODE_ENV !== "production" && "'unsafe-eval'"
};
frame-src 'self' https://mon-entreprise.urssaf.fr https://matomo.fabrique.social.gouv.fr *.dailymotion.com;
frame-src 'self' https://mon-entreprise.urssaf.fr https://matomo.fabrique.social.gouv.fr *.dailymotion.com https://cdtnadminprod.blob.core.windows.net;
style-src 'self' 'unsafe-inline';
font-src 'self' data: blob:;
worker-src 'self' blob:;
Expand Down

0 comments on commit b6c1bd1

Please sign in to comment.