Allow loading of external fonts

Required by several applications like our pdf viewer
author: Lukas Reschke <lukas@statuscode.ch> 2013-02-04 17:51:52 +0100
committer: Lukas Reschke <lukas@statuscode.ch> 2013-02-04 17:51:52 +0100
commit: 8de0f96a244a95e0b881e64d73f9aaa6011de188 (patch)
tree: b5866690bfb96e979656b606086db435067dd1d7 /lib/template.php
parent: b8e6b8692b0c306de6ebfe0a82bfe7bab304cd0a (diff)
download: nextcloud-server-8de0f96a244a95e0b881e64d73f9aaa6011de188.tar.gz
nextcloud-server-8de0f96a244a95e0b881e64d73f9aaa6011de188.zip
1 files changed, 1 insertions, 1 deletions
diff --git a/lib/template.php b/lib/template.php
index 238d8a8ad0f..ebcc2b879c8 100644
--- a/lib/template.php
+++ b/lib/template.php
@@ -192,7 +192,7 @@ class OC_Template{
 
 		// Content Security Policy
 		// If you change the standard policy, please also change it in config.sample.php
-		$policy = OC_Config::getValue('custom_csp_policy',  'default-src \'self\'; script-src \'self\' \'unsafe-eval\'; style-src \'self\' \'unsafe-inline\'; frame-src *; img-src *');
+		$policy = OC_Config::getValue('custom_csp_policy',  'default-src \'self\'; script-src \'self\' \'unsafe-eval\'; style-src \'self\' \'unsafe-inline\'; frame-src *; img-src *; font-src *');
 		header('Content-Security-Policy:'.$policy); // Standard
 		header('X-WebKit-CSP:'.$policy); // Older webkit browsers
author	Lukas Reschke <lukas@statuscode.ch>	2013-02-04 17:51:52 +0100
committer	Lukas Reschke <lukas@statuscode.ch>	2013-02-04 17:51:52 +0100
commit	8de0f96a244a95e0b881e64d73f9aaa6011de188 (patch)
tree	b5866690bfb96e979656b606086db435067dd1d7 /lib/template.php
parent	b8e6b8692b0c306de6ebfe0a82bfe7bab304cd0a (diff)
download	nextcloud-server-8de0f96a244a95e0b881e64d73f9aaa6011de188.tar.gz nextcloud-server-8de0f96a244a95e0b881e64d73f9aaa6011de188.zip