From b2fe500df30da9cecc1121bfd7276a8109128b9d Mon Sep 17 00:00:00 2001 From: Jeffrey Smeets Date: Wed, 3 Jun 2026 08:12:43 +0200 Subject: [PATCH] pelican: add cdnjs.cloudflare.com to style-src and font-src for Monaco editor --- pelican/httproute.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/pelican/httproute.yaml b/pelican/httproute.yaml index 3e13608..cc0b796 100644 --- a/pelican/httproute.yaml +++ b/pelican/httproute.yaml @@ -39,7 +39,7 @@ spec: - name: Permissions-Policy value: "camera=(), microphone=(), geolocation=(), payment=()" - name: Content-Security-Policy - value: "default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://cdnjs.cloudflare.com; style-src 'self' 'unsafe-inline'; img-src 'self' data: blob: https://gravatar.com https://www.gravatar.com; font-src 'self' data:; connect-src 'self' https://wings.jsme.be wss://wings.jsme.be ws: wss:; worker-src blob:; frame-ancestors 'self'" + value: "default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://cdnjs.cloudflare.com; style-src 'self' 'unsafe-inline' https://cdnjs.cloudflare.com; img-src 'self' data: blob: https://gravatar.com https://www.gravatar.com; font-src 'self' data: https://cdnjs.cloudflare.com; connect-src 'self' https://wings.jsme.be wss://wings.jsme.be ws: wss:; worker-src blob:; frame-ancestors 'self'" backendRefs: - name: pelican port: 80