From 37a5cc5b8def062795cb750a4626ff0d480c83d1 Mon Sep 17 00:00:00 2001
From: Alexander Bilz <mail@alexbilz.com>
Date: Fri, 30 Oct 2020 12:28:53 +0000
Subject: [PATCH] Updated CSP to match new FontAwesome CDN

---
 README.md |    6 +++---
 1 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/README.md b/README.md
index db66241..e1ea300 100644
--- a/README.md
+++ b/README.md
@@ -231,11 +231,11 @@
   connect-src 'self';
   default-src 'self';
   frame-ancestors 'none';
-  font-src 'self' stackpath.bootstrapcdn.com;
+  font-src 'self' cdnjs.cloudflare.com;
   img-src 'self';
   object-src 'none';
   script-src 'self';
-  style-src 'self' stackpath.bootstrapcdn.com;
+  style-src 'self' cdnjs.cloudflare.com;
 "
 ```
 If you want to configure the security headers for a site running on Netlify, you want to make sure you create a special `_headers` file in your sites static folder. The content might look like the following:
@@ -246,7 +246,7 @@
   X-XSS-Protection: 1; mode=block
   X-Content-Type-Options: nosniff
   Referrer-Policy: same-origin
-  Content-Security-Policy:  base-uri 'self'; connect-src 'self'; default-src 'self'; frame-ancestors 'none'; font-src 'self' stackpath.bootstrapcdn.com; img-src 'self'; object-src 'none'; script-src 'self'; style-src 'self' stackpath.bootstrapcdn.com;
+  Content-Security-Policy:  base-uri 'self'; connect-src 'self'; default-src 'self'; frame-ancestors 'none'; font-src 'self' cdnjs.cloudflare.com; img-src 'self'; object-src 'none'; script-src 'self'; style-src 'self' cdnjs.cloudflare.com;
   Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
 ```
 ### Configurable pagination section

--
Gitblit v1.10.0