Skip to content

Commit

Permalink
whitelist fonts
Browse files Browse the repository at this point in the history 
Signed-off-by: ayush-billore <[email protected]>
  • Loading branch information
@ayush-billore
ayush-billore committed Dec 8, 2023
1 parent 1093075 commit fabf5d1
Showing 1 changed file with 1 addition and 1 deletion.
2 changes: 1 addition & 1 deletion src/supermarket/config/initializers/content_security_policy.rb
View file
Original file line number Diff line number Diff line change
Expand Up @@ -6,7 +6,7 @@

Rails.application.config.content_security_policy do |policy|
policy.default_src :self, :https
policy.font_src :self, :https, :data
policy.font_src :self, :https, :data, "http://fonts.gstatic.com"
policy.img_src :self, :https, :data, "www.googletagmanager.com"
policy.script_src :self, :https, "https://www.googletagmanager.com", "https://www.google-analytics.com", "http://cdn.segment.com"
policy.object_src :none
Expand Down

0 comments on commit fabf5d1

Please sign in to comment.