Skip to content

Commit

Permalink
Reimplement CSP after git issue (#290)
Browse files Browse the repository at this point in the history
  • Loading branch information
@amoreauCoveo
amoreauCoveo authored Oct 19, 2023
1 parent ac1d21e commit 7aa284f
Show file tree
Hide file tree
Showing 2 changed files with 3 additions and 2 deletions.
2 changes: 1 addition & 1 deletion _includes/_content-security-policy.html
View file
Original file line number Diff line number Diff line change
@@ -1 +1 @@
<meta http-equiv="Content-Security-Policy" content="default-src 'self'; script-src 'report-sample' 'self'; style-src 'report-sample' 'self'; object-src 'none'; base-uri 'self'; connect-src 'self'; font-src 'self'; frame-src 'none'; img-src 'self'; manifest-src 'self'; media-src 'self'; worker-src 'none';" />
<meta http-equiv="Content-Security-Policy" content="default-src 'self'; script-src 'report-sample' 'self' 'unsafe-inline' https://www.googletagmanager.com http://platform.twitter.com https://cdn.cookielaw.org https://code.jquery.com/jquery-3.6.0.min.js https://static.cloud.coveo.com; style-src 'report-sample' 'self' 'unsafe-inline' https://fonts.googleapis.com https://p.typekit.net https://s3.amazonaws.com https://static.cloud.coveo.com https://use.typekit.net; object-src https://cdn.cookielaw.org; base-uri 'self'; connect-src 'self' https://cdn.cookielaw.org https://coveo-privacy.my.onetrust.com https://geolocation.onetrust.com; font-src 'self' https://fonts.gstatic.com https://use.typekit.net; frame-src 'self' http://platform.twitter.com; img-src 'self' cdn.cookielaw.org data: https://s3.amazonaws.com https://www.coveo.com; manifest-src 'self'; media-src 'self'; worker-src 'none';" />
3 changes: 2 additions & 1 deletion _layouts/base.html
View file
Original file line number Diff line number Diff line change
Expand Up @@ -21,6 +21,7 @@
<link rel="apple-touch-icon-precomposed" href="{{ site.github.url | replace: 'http://', '//' }}/images/apple-touch-icon-precomposed.png" />
<link href="{{ site.github.url | replace: 'http://', '//' }}/feed.xml" rel="alternate" type="application/rss+xml" title="{{ site.inc.title }}" />

{% include _content-security-policy.html %}
<meta property="og:site_name" content="{{ site.title }}" />
<meta name="twitter:card" content="summary" />

Expand Down Expand Up @@ -151,7 +152,7 @@ <h1 class="currentSiteName"><em>Tech Blog</em> <span>Menu<i class="arrow"></i></
<a href="https://docs.coveo.com">Documentation</a>
<a href="https://careers.coveo.com">Careers</a> &middot;
<a href="#ot_toggleInfoDisplay" class="show-ot-infoDisplay">Cookies Preferences</a>
<a href="https://www.coveo.com/en/pages/privacy-policy#California-Residents" target="_blank" class="ccpa"> <img src="images/ccpa-privacyoptions.svg" alt="CCPA" width="33" id="ccpa_icon" />Your Privacy Choices</a>
<a href="https://www.coveo.com/en/pages/privacy-policy#California-Residents" target="_blank" class="ccpa"> <img src="{{site.baseurl}}/images/ccpa-privacyoptions.svg" alt="CCPA" width="33" id="ccpa_icon" />Your Privacy Choices</a>
</nav>

<nav class="social">
Expand Down

0 comments on commit 7aa284f

Please sign in to comment.