Add blob: scheme to default CSP policy

Fixes https://github.com/owncloud/core/issues/19438
author: Lukas Reschke <lukas@owncloud.com> 2015-09-29 14:18:12 +0200
committer: Lukas Reschke <lukas@owncloud.com> 2015-09-29 14:27:35 +0200
commit: e735a9915cec6a26f7f6d89100fef383c563fd0d (patch)
tree: f9ddbb5ce4f81d319a8c399a38be4f21d16bb58f /tests/lib/appframework/http/DataResponseTest.php
parent: c061b3e44b56c5cd89aeb4a6bad4673155e7ee9e (diff)
download: nextcloud-server-e735a9915cec6a26f7f6d89100fef383c563fd0d.tar.gz
nextcloud-server-e735a9915cec6a26f7f6d89100fef383c563fd0d.zip
1 files changed, 1 insertions, 1 deletions
diff --git a/tests/lib/appframework/http/DataResponseTest.php b/tests/lib/appframework/http/DataResponseTest.php
index 2b7817c28e9..e3d5689d54c 100644
--- a/tests/lib/appframework/http/DataResponseTest.php
+++ b/tests/lib/appframework/http/DataResponseTest.php
@@ -68,7 +68,7 @@ class DataResponseTest extends \Test\TestCase {
 
 		$expectedHeaders = [
 			'Cache-Control' => 'no-cache, must-revalidate',
-			'Content-Security-Policy' => "default-src 'none';script-src 'self' 'unsafe-eval';style-src 'self' 'unsafe-inline';img-src 'self' data:;font-src 'self';connect-src 'self';media-src 'self'",
+			'Content-Security-Policy' => "default-src 'none';script-src 'self' 'unsafe-eval';style-src 'self' 'unsafe-inline';img-src 'self' data: blob:;font-src 'self';connect-src 'self';media-src 'self'",
 		];
 		$expectedHeaders = array_merge($expectedHeaders, $headers);
author	Lukas Reschke <lukas@owncloud.com>	2015-09-29 14:18:12 +0200
committer	Lukas Reschke <lukas@owncloud.com>	2015-09-29 14:27:35 +0200
commit	e735a9915cec6a26f7f6d89100fef383c563fd0d (patch)
tree	f9ddbb5ce4f81d319a8c399a38be4f21d16bb58f /tests/lib/appframework/http/DataResponseTest.php
parent	c061b3e44b56c5cd89aeb4a6bad4673155e7ee9e (diff)
download	nextcloud-server-e735a9915cec6a26f7f6d89100fef383c563fd0d.tar.gz nextcloud-server-e735a9915cec6a26f7f6d89100fef383c563fd0d.zip