diff options
| author | href <href@random.sh> | 2019-02-19 18:56:57 +0100 |
|---|---|---|
| committer | href <href@random.sh> | 2019-02-19 18:56:57 +0100 |
| commit | f4bfc628ca16582ee064a2753e6a32fd891803d4 (patch) | |
| tree | 69cda392d6ca9465a01a1beb72a6163afc006259 /lib/pleroma/web/ostatus | |
| parent | aa9af1d639c21787acab7e09ef8d45b443793e2a (diff) | |
| download | pleroma-f4bfc628ca16582ee064a2753e6a32fd891803d4.tar.gz | |
Player: allow styles on CSP, loop videos
Diffstat (limited to 'lib/pleroma/web/ostatus')
| -rw-r--r-- | lib/pleroma/web/ostatus/ostatus_controller.ex | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/lib/pleroma/web/ostatus/ostatus_controller.ex b/lib/pleroma/web/ostatus/ostatus_controller.ex index 4877e032b..0490a32d3 100644 --- a/lib/pleroma/web/ostatus/ostatus_controller.ex +++ b/lib/pleroma/web/ostatus/ostatus_controller.ex @@ -197,7 +197,7 @@ defmodule Pleroma.Web.OStatus.OStatusController do |> put_resp_header("x-frame-options", "ALLOW") |> put_resp_header( "content-security-policy", - "default-src 'none'; img-src 'self' data: https:; media-src 'self' https:;" + "default-src 'none';style-src 'self' 'unsafe-inline';img-src 'self' data: https:; media-src 'self' https:;" ) |> put_view(Pleroma.Web.Metadata.PlayerView) |> render("player.html", url) |