diff options
| author | Lukas Reschke <lukas@statuscode.ch> | 2013-02-04 18:38:16 +0100 |
|---|---|---|
| committer | Lukas Reschke <lukas@statuscode.ch> | 2013-02-04 18:38:16 +0100 |
| commit | bb90b0ee6e42be748309d56040a4c41add32edc9 (patch) | |
| tree | daa2de0e788453df64b47dd755b5a979ae769ae8 /lib/template.php | |
| parent | 8de0f96a244a95e0b881e64d73f9aaa6011de188 (diff) | |
| download | nextcloud-server-bb90b0ee6e42be748309d56040a4c41add32edc9.tar.gz nextcloud-server-bb90b0ee6e42be748309d56040a4c41add32edc9.zip | |
Allow the loading of local font files embedded via data:
Diffstat (limited to 'lib/template.php')
| -rw-r--r-- | lib/template.php | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/lib/template.php b/lib/template.php index ebcc2b879c8..be65d14a9f6 100644 --- a/lib/template.php +++ b/lib/template.php @@ -192,7 +192,7 @@ class OC_Template{ // Content Security Policy // If you change the standard policy, please also change it in config.sample.php - $policy = OC_Config::getValue('custom_csp_policy', 'default-src \'self\'; script-src \'self\' \'unsafe-eval\'; style-src \'self\' \'unsafe-inline\'; frame-src *; img-src *; font-src *'); + $policy = OC_Config::getValue('custom_csp_policy', 'default-src \'self\'; script-src \'self\' \'unsafe-eval\'; style-src \'self\' \'unsafe-inline\'; frame-src *; img-src *; font-src data:'); header('Content-Security-Policy:'.$policy); // Standard header('X-WebKit-CSP:'.$policy); // Older webkit browsers |