This is an automated email from the ASF dual-hosted git repository. xiangfu pushed a commit to branch new-static-prod in repository https://gitbox.apache.org/repos/asf/pinot-site.git
commit 1fd7a912a8fa4f7631592e870b1ce591354d1bd1 Author: Xiang Fu <[email protected]> AuthorDate: Sun Apr 14 20:12:54 2024 +0800 Add .htaccess file for CSP header --- .htaccess | 10 ++++++++++ 1 file changed, 10 insertions(+) diff --git a/.htaccess b/.htaccess new file mode 100644 index 00000000..540bae58 --- /dev/null +++ b/.htaccess @@ -0,0 +1,10 @@ +<IfModule mod_headers.c> + Header always set Content-Security-Policy "default-src 'self'; \ +script-src 'self' 'unsafe-eval' 'unsafe-inline' giscus.app analytics.umami.is www.youtube.com www.googletagmanager.com www.google-analytics.com; \ +style-src 'self' 'unsafe-inline'; \ +img-src * blob: data:; \ +media-src *.s3.amazonaws.com; \ +connect-src *; \ +font-src 'self'; \ +frame-src www.youtube.com youtube.com giscus.app youtu.be;" +</IfModule> --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
