Skip to content

Commit

Permalink
Merge branch 'update-csp' into 'main'
Browse files Browse the repository at this point in the history
Update CSP hash of nuxt inline script

See merge request reportcreator/reportcreator!800
  • Loading branch information
MWedl committed Dec 11, 2024
2 parents aa07c75 + 157a6b2 commit a85946b
Showing 1 changed file with 1 addition and 1 deletion.
2 changes: 1 addition & 1 deletion api/src/reportcreator_api/conf/settings.py
Original file line number Diff line number Diff line change
Expand Up @@ -434,7 +434,7 @@ def remove_empty_items(lst=None):
'style-src': [SELF, UNSAFE_INLINE],
'script-src': [
SELF,
"'sha256-vfPLwqW0BNyGGLG6upxgxsXF+K7Jp/V2hJGlbPt7NJY='", # hash of nuxt inline script injected in index.html
"'sha256-ZESfSOJLE5b5VnKTOBGcFd0Ea51UX+V9WhyGwiB1wgc='", # hash of nuxt inline script injected in index.html
],
# Trusted types are not compatible with django admin, django rest framework's browsable API, swagger UI and django debug toolbar
# 'require-trusted-types-for': ["'script'"],
Expand Down

0 comments on commit a85946b

Please sign in to comment.