Content Security Policy

2023-12-15 15:19:26 +01:00
parent 937bf9787c
commit b8c2bea4ae
3 changed files with 3 additions and 3 deletions
--- a/init.py
+++ b/init.py
@ -71,7 +71,7 @@ class Meals(db.Model):

 scheduler = APScheduler()
 app = create()
-Talisman(app)
+Talisman(app, content_security_policy={"default-src": ["*.paulmartin.cloud", '\'self\'']})
 scheduler.init_app(app)
 scheduler.start()
 scheduler.api_enabled = True
--- a/templates/index.html
+++ b/templates/index.html
@ -3,7 +3,7 @@
 <head>
    <title>DualHub</title>
    <link rel="stylesheet" type="text/css" href={{ url_for("static", filename="style.css") }}>
-    <script async src="https://analytics.dev.paulmartin.cloud/script.js" data-website-id="459fa66e-e255-4393-8e89-ead8b1572d0d"></script>
+    <script async src="https://analytics.paulmartin.cloud/script.js" data-website-id="459fa66e-e255-4393-8e89-ead8b1572d0d"></script>
 </head>
 <body>
 <nav>
--- a/templates/plan-general.html
+++ b/templates/plan-general.html
@ -4,7 +4,7 @@
    <meta charset="UTF-8">
    <title>Vorlesungsplan</title>
    <link rel="stylesheet" type="text/css" href="{{ url_for('static', filename='cal.css') }}">
-    <script async src="https://analytics.dev.paulmartin.cloud/script.js" data-website-id="459fa66e-e255-4393-8e89-ead8b1572d0d"></script>
+    <script async src="https://analytics.paulmartin.cloud/script.js" data-website-id="459fa66e-e255-4393-8e89-ead8b1572d0d"></script>
 </head>
 <body>
 <nav>