From 683ce4c4f63f38fa989e1c9f9a76aed02eb3468c Mon Sep 17 00:00:00 2001
From: Felix	Boerner <ich@felix-boerner.de>
Date: Mon, 11 Nov 2024 13:26:11 +0000
Subject: [PATCH] test: fix csp for youtube video

---
 tests/exampleSiteWithVideo/hugo.toml |    2 +-
 1 files changed, 1 insertions(+), 1 deletions(-)

diff --git a/tests/exampleSiteWithVideo/hugo.toml b/tests/exampleSiteWithVideo/hugo.toml
index 807ef39..45942a2 100644
--- a/tests/exampleSiteWithVideo/hugo.toml
+++ b/tests/exampleSiteWithVideo/hugo.toml
@@ -112,7 +112,7 @@
 [[server.headers]]
     for = '/**'
     [server.headers.values]
-      Content-Security-Policy = "default-src 'self'; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; font-src 'self' https://fonts.gstatic.com; img-src 'self' https://dummyimage.com"
+      Content-Security-Policy = "default-src 'self'; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; font-src 'self' https://fonts.gstatic.com; frame-src https://www.youtube.com/embed/; img-src 'self' https://dummyimage.com"
       Referrer-Policy = 'strict-origin-when-cross-origin'
       X-Content-Type-Options = 'nosniff'
       X-Frame-Options = 'DENY'

--
Gitblit v1.10.0