Content Security and Permission Policies - django setup

gip-inclusion · Sep 21, 2023 · 9bcdd00 · 9bcdd00
1 parent 0c77af3
commit 9bcdd00
Showing 1 changed file with 2 additions and 1 deletion.
diff --git a/config/settings/base.py b/config/settings/base.py
@@ -361,10 +361,11 @@
 CSP_SCRIPT_SRC = (
     "'self'",
     "https://cdn.jsdelivr.net",
+    "https://tally.so",
 )
 CSP_SCRIPT_SRC_ELEM = CSP_SCRIPT_SRC
 CSP_FRAME_SRC = ("'self'", "https://tally.so")
-CSP_IMG_SRC = ("'self'", "data:")
+CSP_IMG_SRC = ("'self'", "data:", "cellar-c2.services.clever-cloud.com")
 CSP_INCLUDE_NONCE_IN = ["script-src", "script-src-elem"]
 
 # HSTS