Content-Security-Policy | default-src 'self'; script-src 'self' ajax.googleapis.com www.google-analytics.com 'unsafe-inline' 'unsafe-eval'; img-src 'self' www.alfresco.com data:; style-src 'self' 'unsafe-inline' ajax.googleapis.com fonts.googleapis.com; font-src 'self' fonts.googleapis.com fonts.gstatic.com data:; frame-src 'self' www.grupoavanzia.mx; child-src 'self' www.grupoavanzia.mx; connect-src 'self' https://apis.google.com ajax.googleapis.com fonts.googleapis.com maps.googleapis.com www.googleapis.com; object-src 'none' |