FIX: removed 'unsafe-inline' from content policy and cleaned up root HTML file.
This commit is contained in:
MajorDroolz
@@ -1,6 +1,6 @@
|
|||||||
<!DOCTYPE html>
|
<!DOCTYPE html>
|
||||||
<html>
|
<html>
|
||||||
<head>
|
<head>
|
||||||
<meta http-equiv="Refresh" content="0; url='./resume'"/>
|
<meta http-equiv="Refresh" content="0; url=resume"/>
|
||||||
</head>
|
</head>
|
||||||
</html>
|
</html>
|
||||||
|
|||||||
@@ -9,7 +9,7 @@
|
|||||||
<meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
|
<meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
|
||||||
<meta http-equiv="X-UA-Compatible" content="IE=edge">
|
<meta http-equiv="X-UA-Compatible" content="IE=edge">
|
||||||
<meta http-equiv="Content-Security-Policy" content="
|
<meta http-equiv="Content-Security-Policy" content="
|
||||||
default-src 'self' 'unsafe-inline';
|
default-src 'self';
|
||||||
style-src 'self' https://fonts.googleapis.com https://cdn.jsdelivr.net;
|
style-src 'self' https://fonts.googleapis.com https://cdn.jsdelivr.net;
|
||||||
font-src 'self' https://cdn.jsdelivr.net https://fonts.gstatic.com;
|
font-src 'self' https://cdn.jsdelivr.net https://fonts.gstatic.com;
|
||||||
connect-src ws:;
|
connect-src ws:;
|
||||||
|
|||||||
Reference in New Issue
Block a user