2022-12-03 09:26:17 +00:00
|
|
|
diff --git a/lib/pleroma/web/plugs/http_security_plug.ex b/lib/pleroma/web/plugs/http_security_plug.ex
|
2023-04-15 12:26:21 +00:00
|
|
|
index d7cff7343..d09159c4f 100644
|
2022-12-03 09:26:17 +00:00
|
|
|
--- a/lib/pleroma/web/plugs/http_security_plug.ex
|
|
|
|
+++ b/lib/pleroma/web/plugs/http_security_plug.ex
|
2023-04-15 12:26:21 +00:00
|
|
|
@@ -116,7 +116,7 @@ defp csp_string(conn) do
|
2023-01-04 11:47:02 +00:00
|
|
|
style_src = "style-src 'self' '#{nonce_tag}'"
|
|
|
|
font_src = "font-src 'self'"
|
2022-12-03 09:26:17 +00:00
|
|
|
|
2023-04-15 12:26:21 +00:00
|
|
|
- script_src = "script-src 'self' '#{nonce_tag}' "
|
|
|
|
+ script_src = "script-src 'self' 'unsafe-eval' '#{nonce_tag}' "
|
2022-12-03 09:26:17 +00:00
|
|
|
|
2023-04-15 12:26:21 +00:00
|
|
|
script_src =
|
|
|
|
if @mix_env == :dev do
|