Configuration/Settings.yaml
Nieuwenhuizen:
ContentSecurityPolicy:
enabled: true
report-only: false
content-security-policy:
default:
base-uri:
- 'self'
connect-src:
- 'self'
default-src:
- 'self'
form-action:
- 'self'
img-src:
- 'self'
media-src:
- 'self'
frame-src:
- 'self'
object-src:
- 'self'
script-src:
- 'self'
style-src:
- 'self'
font-src:
- 'self'
custom: []
backend:
base-uri:
- 'self'
connect-src:
- 'self'
default-src:
- 'self'
form-action:
- 'self'
img-src:
- 'self'
media-src:
- 'self'
frame-src:
- 'self'
object-src:
- 'self'
script-src:
- 'self'
- 'unsafe-inline'
style-src:
- 'self'
- 'unsafe-inline'
font-src:
- 'self'
custom-backend: []
Neos:
Neos:
fusion:
autoInclude:
Nieuwenhuizen.ContentSecurityPolicy: true