diff options
| author | Thomas Müller <thomas.mueller@tmit.eu> | 2013-02-04 10:36:43 -0800 |
|---|---|---|
| committer | Thomas Müller <thomas.mueller@tmit.eu> | 2013-02-04 10:36:43 -0800 |
| commit | f04a91bd601313c92858944394f792e9dabf03a6 (patch) | |
| tree | 98a2530bcffa331e2ec097d238748bc4ad24c53d /lib | |
| parent | 301afac2913e81414140c25bc21ede563563f76e (diff) | |
| parent | 5fcb35efd606364eb8530880e62d8d3094b9c1f4 (diff) | |
| download | nextcloud-server-f04a91bd601313c92858944394f792e9dabf03a6.tar.gz nextcloud-server-f04a91bd601313c92858944394f792e9dabf03a6.zip | |
Merge pull request #1445 from owncloud/CSP_font
Allow loading of external fonts
Diffstat (limited to 'lib')
| -rw-r--r-- | lib/template.php | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/lib/template.php b/lib/template.php index 238d8a8ad0f..fb9f7ad62d9 100644 --- a/lib/template.php +++ b/lib/template.php @@ -192,7 +192,7 @@ class OC_Template{ // Content Security Policy // If you change the standard policy, please also change it in config.sample.php - $policy = OC_Config::getValue('custom_csp_policy', 'default-src \'self\'; script-src \'self\' \'unsafe-eval\'; style-src \'self\' \'unsafe-inline\'; frame-src *; img-src *'); + $policy = OC_Config::getValue('custom_csp_policy', 'default-src \'self\'; script-src \'self\' \'unsafe-eval\'; style-src \'self\' \'unsafe-inline\'; frame-src *; img-src *; font-src \'self\' data:'); header('Content-Security-Policy:'.$policy); // Standard header('X-WebKit-CSP:'.$policy); // Older webkit browsers |