make Content-Security-Policy stricter

author: Alan Pearce 2024-05-29 17:47:49 +0200
committer: Alan Pearce 2024-05-29 17:47:49 +0200
commit: 6235a0fdffbea41da24229b044557c9657bf882b (patch)
tree: 812652bda3e640c368b9006096be36c34bf315be /config.toml
parent: 5331abaa179812eca1ea764ca6025529cc59962c (diff)
download: website-6235a0fdffbea41da24229b044557c9657bf882b.tar.lz
website-6235a0fdffbea41da24229b044557c9657bf882b.tar.zst
website-6235a0fdffbea41da24229b044557c9657bf882b.zip
1 files changed, 9 insertions, 3 deletions
diff --git a/config.toml b/config.toml
index 70ed9f7..9f788e5 100644
--- a/config.toml
+++ b/config.toml
@@ -18,16 +18,22 @@ oidc_host = "https://id.alanpearce.eu/"
   default-src = [
     "'none'",
   ]
+  form-action = [
+    "'none'",
+  ]
+  base-uri = [
+    "'none'",
+  ]
   image-src = [
     "'self'",
-    "http://gc.zgo.at",
+    "https://gc.zgo.at",
   ]
   script-src = [
     "'self'",
-    "http://gc.zgo.at",
+    "https://gc.zgo.at",
   ]
   style-src = [
-    "'unsafe-inline'",
+    "'sha256-+7qCR9+91EXRy0dbbyuh8KDyQUJwTewM/EPr4b/IKoE='",
   ]
   frame-ancestors = [
     "https://kagi.com",
author	Alan Pearce	2024-05-29 17:47:49 +0200
committer	Alan Pearce	2024-05-29 17:47:49 +0200
commit	6235a0fdffbea41da24229b044557c9657bf882b (patch)
tree	812652bda3e640c368b9006096be36c34bf315be /config.toml
parent	5331abaa179812eca1ea764ca6025529cc59962c (diff)
download	website-6235a0fdffbea41da24229b044557c9657bf882b.tar.lz website-6235a0fdffbea41da24229b044557c9657bf882b.tar.zst website-6235a0fdffbea41da24229b044557c9657bf882b.zip