Skip to content
This repository has been archived by the owner on Mar 7, 2023. It is now read-only.

Commit

Permalink
fix(firebase): update csp
Browse files Browse the repository at this point in the history
  • Loading branch information
@rhahao
rhahao authored Feb 25, 2023
1 parent 66e3b73 commit 5eda850
Showing 1 changed file with 1 addition and 1 deletion.
2 changes: 1 addition & 1 deletion firebase.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -14,7 +14,7 @@
"headers": [
{
"key": "Content-Security-Policy",
"value": "default-src 'self' https://sws2apps-tools.firebaseapp.com; img-src 'self' data: https://*.googleusercontent.com https://s.yimg.com blob:; script-src 'self' https://fpnpmcdn.net https://apis.google.com https://www.googletagmanager.com; connect-src 'self' data: https://sws2apps.onrender.com https://*.fpapi.io https://api.fpjs.io https://*.fptls.com https://app.jw-cdn.org https://www.jw.org https://identitytoolkit.googleapis.com https://apis.google.com https://securetoken.googleapis.com https://firebaseinstallations.googleapis.com https://firebase.googleapis.com https://*.google-analytics.com; prefetch-src https://*.fpapi.io https://api.fpjs.io https://*.fptls.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; font-src 'self' data: https://fonts.gstatic.com; base-uri 'self' https://www.jw.org; form-action 'self'; object-src 'none'; frame-ancestors 'none'"
"value": "default-src 'self' https://sws2apps-tools.firebaseapp.com https://cpe-sws.firebaseapp.com; img-src 'self' data: https://*.googleusercontent.com https://s.yimg.com blob:; script-src 'self' https://fpnpmcdn.net https://apis.google.com https://www.googletagmanager.com; connect-src 'self' data: https://sws2apps.onrender.com https://*.fpapi.io https://api.fpjs.io https://*.fptls.com https://app.jw-cdn.org https://www.jw.org https://identitytoolkit.googleapis.com https://apis.google.com https://securetoken.googleapis.com https://firebaseinstallations.googleapis.com https://firebase.googleapis.com https://*.google-analytics.com; prefetch-src https://*.fpapi.io https://api.fpjs.io https://*.fptls.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; font-src 'self' data: https://fonts.gstatic.com; base-uri 'self' https://www.jw.org; form-action 'self'; object-src 'none'; frame-ancestors 'none'"
},
{ "key": "Cache-Control", "value": "no-cache" },
{ "key": "X-Content-Type-Options", "value": "nosniff" },
Expand Down

0 comments on commit 5eda850

Please sign in to comment.