-
Notifications
You must be signed in to change notification settings - Fork 0
/
netlify.toml
7 lines (7 loc) · 1.76 KB
/
netlify.toml
1
2
3
4
5
6
7
[[headers]]
for = "/*"
[headers.values]
Content-Security-Policy = "default-src 'self' https://static.contentful.com; script-src 'self' 'unsafe-eval' https://cdn.staging.data.contentful.org https://static.contentful.com https://static.zuora.com https://cdn.segment.com https://widget.intercom.io https://js.intercomcdn.com https://*.cloudfront.net https://cmp.osano.com https://cdn.embedly.com https://contentful.github.io https://fullstory.com https://*.fullstory.com https://www.google-analytics.com https://www.googletagmanager.com https://*.googleapis.com https://googleapis.com https://static.filestackapi.com https://cdn.wootric.com https://cdnjs.cloudflare.com https://fast.wistia.com 'sha256-FEVAuH+6Bm6VUdmFF4FitBNJ0zorKj7OmFzwVinkffY=' https://sgmnt-cdn.ctfassets.net; style-src 'self' 'unsafe-inline' https://cdn.staging.data.contentful.org https://static.contentful.com https://www.contentful.com https://cmp.osano.com https://cdn.embedly.com https://cdnjs.cloudflare.com https://contentful.github.io https://fonts.googleapis.com https://s3.eu-central-1.amazonaws.com https://static.filestackapi.com; img-src 'self' data: https: blob:; font-src 'self' data: https://fonts.intercomcdn.com https://static.contentful.com https://www.contentful.com https://cdn.embedly.com https://cdnjs.cloudflare.com https://fonts.gstatic.com https://js.intercomcdn.com https://use.typekit.net; connect-src 'self' https: wss: blob:; media-src blob: data: https://fast.wistia.net https://embedwistia-a.akamaihd.net; object-src 'none'; child-src 'self' blob:; frame-src https: http:; worker-src 'self' blob:;upgrade-insecure-requests 'none';"
X-Frame-Options = "ALLOW-FROM https://app.contentful.com"
Access-Control-Allow-Origin = "app.contentful.com"
Access-Control-Allow-Credentials = "true"