Update content security policy with a wildcard

2024-02-03 15:37:53 +03:00 · 2024-02-03 15:37:53 +03:00 · f682f8c5c1
parent a53c12b90d
commit f682f8c5c1
1 changed files with 3 additions and 3 deletions
--- a/strapi/config/middlewares.ts
+++ b/strapi/config/middlewares.ts
@ -8,9 +8,9 @@ export default [
        useDefaults: true,
        directives: {
          'connect-src': ["'self'", 'https:'],
-	  'script-src': ["'self'", "'unsafe-inline'", 'api.enderman.ch', 'cdn.jsdelivr.net'],
-          'img-src': ["'self'", 'data:', 'blob:', 'api.enderman.ch', 'cdn.jsdelivr.net', 'strapi.io'],
-	  'media-src': ["'self'", 'data:', 'blob:', 'api.enderman.ch'],
+          'script-src': ["'self'", "'unsafe-inline'", 'api.enderman.ch', 'cdn.jsdelivr.net'],
+          'img-src': ["'self'", 'data:', 'blob:', '*'],
+          'media-src': ["'self'", 'data:', 'blob:', '*'],
          upgradeInsecureRequests: null,
        },
      },