Improve CSP

This commit is contained in:
Pierre Rudloff 2020-10-20 00:57:26 +02:00
parent e97573922d
commit 4bcf9566ad

View file

@ -39,6 +39,9 @@ class CspMiddleware
$csp->addDirective('default-src', []) $csp->addDirective('default-src', [])
->addDirective('font-src', ['self' => true]) ->addDirective('font-src', ['self' => true])
->addDirective('style-src', ['self' => true]) ->addDirective('style-src', ['self' => true])
->addDirective('form-action', ['self' => true])
->addDirective('base-uri', [])
->addDirective('frame-ancestors', [])
->addSource('img-src', '*'); ->addSource('img-src', '*');
if ($this->config->debug) { if ($this->config->debug) {