projects / pgweb.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: ceb90c9)
Allow google analytics to do "connect" as well
authorMagnus Hagander <magnus@hagander.net>
Sat, 29 Dec 2018 10:18:05 +0000 (11:18 +0100)
committerMagnus Hagander <magnus@hagander.net>
Sat, 29 Dec 2018 10:18:05 +0000 (11:18 +0100)
Based on CSP reports collected

pgweb/util/middleware.py patch | blob | blame | history

diff --git a/pgweb/util/middleware.py b/pgweb/util/middleware.py
index 75ad78addb0db43b4eb64f059e499fc6ab8ee3c2..93260b98e5b4e05c77c0b5dc146844468337ed39 100644 (file)
--- a/pgweb/util/middleware.py
+++ b/pgweb/util/middleware.py
@@ -43,6 +43,7 @@ class PgMiddleware(object):
                        ('default', ["'self'", ]),
                        ('img', ['*', ]),
                        ('script', ["'self'", "www.google-analytics.com", "ssl.google-analytics.com"]),
+                       ('connect', ["'self'", "www.google-analytics.com", "ssl.google-analytics.com"]),
                        ('media', ["'self'", ]),
                        ('style', ["'self'", "fonts.googleapis.com"]),
                        ('font', ["'self'", "fonts.gstatic.com"]),
This is the code for the postgresql.org website