You are viewing a plain text version of this content. The canonical link for it is here.
Posted to commits@camel.apache.org by zr...@apache.org on 2020/03/04 13:51:06 UTC
[camel-website] branch master updated: fix: allow XHR access to
Algolia servers
This is an automated email from the ASF dual-hosted git repository.
zregvart pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/camel-website.git
The following commit(s) were added to refs/heads/master by this push:
new d3a0baa fix: allow XHR access to Algolia servers
d3a0baa is described below
commit d3a0baa51dfd801d5d76082e0686497d9c5ca7f1
Author: Zoran Regvart <zr...@apache.org>
AuthorDate: Wed Mar 4 14:51:00 2020 +0100
fix: allow XHR access to Algolia servers
This tweaks the Content Security Policy to allow XHR access to
https://*.algolia.net https://*.algolianet.com.
---
static/.htaccess | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/static/.htaccess b/static/.htaccess
index 1098df2..ec4e332 100644
--- a/static/.htaccess
+++ b/static/.htaccess
@@ -1323,7 +1323,7 @@ AddDefaultCharset utf-8
<IfModule mod_headers.c>
# (1) (2) (3) (4) (5)
- Header set Content-Security-Policy "default-src 'self'; base-uri 'none'; form-action 'self'; frame-ancestors 'none'; upgrade-insecure-requests" "expr=%{CONTENT_TYPE} =~ m#text/html#i"
+ Header set Content-Security-Policy "default-src 'self'; base-uri 'none'; form-action 'self'; frame-ancestors 'none'; upgrade-insecure-requests; connect-src https://*.algolia.net https://*.algolianet.com" "expr=%{CONTENT_TYPE} =~ m#text/html#i"
</IfModule>
# ----------------------------------------------------------------------