Add Scripts and CSS to the container to ensure strong CSP support

Question

Add Scripts and CSS to the container to ensure strong CSP support

Opened this issue 3 years ago · 0 comments

Hey,

Love your project! But can't run it on a Prod Env. where strong CSP enabled. Basically all external scripts and css are blocked:

Apache2 config for reference:

    Header always set Content-Security-Policy "default-src https:; \
    script-src 'self' 'unsafe-inline' 'unsafe-eval' ; \
    connect-src 'self'; \
    img-src 'self' data: \
    style-src 'self' 'unsafe-inline' ; \
    base-uri 'self'; \
    form-action 'self'; \
    font-src 'self' data:"

It will be wonderful if you can include those CSSs and JSs and Fonts into container.