mirror/zoneminder
1
0
Fork 0
mirror of https://github.com/ZoneMinder/zoneminder.git synced 2026-05-24 14:36:09 -04:00
Code Issues Packages Projects Releases Wiki Activity

Correct the syntax of the CSP

Browse Source
This commit is contained in:
Isaac Connor
2023-02-23 09:47:49 -05:00
parent 32afb13b39
commit 6867b0c841
1 changed files with 1 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
web/includes/functions.php
View File

@@ -46,7 +46,7 @@ function CSPHeaders($view, $nonce) {
// fall through
default:
// Enforce script-src on pages where inline scripts and event handlers have been fixed.
header("Content-Security-Policy: script-src 'self' object-src 'self' 'nonce-$nonce' $additionalScriptSrc".
header("Content-Security-Policy: object-src 'self'; script-src 'self' 'nonce-$nonce' $additionalScriptSrc".
(ZM_CSP_REPORT_URI ? '; report-uri '.ZM_CSP_REPORT_URI : '' )
);
break;