Content-Security-Policy-Report-Only | default-src 'self' static.ekapusta.ru static.e-kapusta.ru; img-src 'self' data: mc.yandex.ru vk.com static.ekapusta.ru static.e-kapusta.ru top-fwz1.mail.ru login.vk.com www.facebook.com storage101.lon3.clouddrive.com *.google-analytics.com *.google.com *.google.ru *.doubleclick.net counter.yadro.ru www.googleadservices.com *.googlesyndication.com ekapusta.zendesk.com media.reformal.ru reformal.ru; style-src 'self' 'unsafe-inline' static.ekapusta.ru static.e-kapusta.ru; font-src 'self' https://fonts.gstatic.com static.ekapusta.ru static.e-kapusta.ru; script-src 'self' 'unsafe-eval' 'unsafe-inline' blob: mc.yandex.ru static.ekapusta.ru static.e-kapusta.ru connect.facebook.net top-fwz1.mail.ru *.google-analytics.com www.googleadservices.com kladr-api.ru *.doubleclick.net media.reformal.ru; connect-src 'self' e-kapusta.ru ekapusta.ru wss://ekapusta.ru wss://e-kapusta.ru mc.yandex.ru *.google-analytics.com; frame-src 'self' reformal.ru; report-uri /start/csp_report |