This is an automated email from the ASF dual-hosted git repository. xiangfu pushed a commit to branch update-CSP in repository https://gitbox.apache.org/repos/asf/pinot-site.git
commit c19024cbc1df8cd905f0c63e1d63b8aac745e7aa Author: Xiang Fu <[email protected]> AuthorDate: Tue Apr 9 16:55:01 2024 +0800 Remove meta from layout.tsx --- app/layout.tsx | 4 ---- next.config.js | 2 +- 2 files changed, 1 insertion(+), 5 deletions(-) diff --git a/app/layout.tsx b/app/layout.tsx index 2d73406b..893b964b 100644 --- a/app/layout.tsx +++ b/app/layout.tsx @@ -88,10 +88,6 @@ export default function RootLayout({ children }: { children: React.ReactNode }) href="/static/favicons/safari-pinned-tab.svg" color="#5bbad5" /> - <meta - http-equiv="Content-Security-Policy" - content="frame-src 'self' youtu.be youtube.com *.youtube.com googlevideo.com *.googlevideo.com;" - /> <meta name="msapplication-TileColor" content="#000000" /> <meta name="theme-color" media="(prefers-color-scheme: light)" content="#fff" /> <meta name="theme-color" media="(prefers-color-scheme: dark)" content="#000" /> diff --git a/next.config.js b/next.config.js index cbd6797b..4593900d 100644 --- a/next.config.js +++ b/next.config.js @@ -13,7 +13,7 @@ const ContentSecurityPolicy = ` media-src *.s3.amazonaws.com; connect-src *; font-src 'self'; - frame-src 'self' giscus.app youtu.be youtube.com *.youtube.com googlevideo.com *.googlevideo.com; + frame-src 'self' giscus.app youtu.be youtube.com www.youtube.com `; const securityHeaders = [ --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
