Content-Security-Policy | base-uri 'self'; default-src 'self' 'unsafe-inline' cdn.jivosite.com code.jivosite.com mc.yandex.ru player.vimeo.com staticxx.facebook.com vk.com www.facebook.com www.google.com www.youtube.com; font-src 'self' data: 'unsafe-inline' fonts.gstatic.com maxcdn.bootstrapcdn.com; img-src 'self' data: 'unsafe-inline' cdn.datatables.net csi.gstatic.com maps.googleapis.com maps.gstatic.com mc.webvisor.com mc.webvisor.org mc.yandex.ru mc.yandex.ua mts.googleapis.com stats.g.doubleclick.net vk.com web.facebook.com www.facebook.com www.google-analytics.com; script-src 'self' 'unsafe-eval' 'unsafe-inline' ajax.googleapis.com cdn.datatables.net cdn.jivosite.com code.jivosite.com connect.facebook.net maps.googleapis.com mc.yandex.ru oss.maxcdn.com player.vimeo.com telemetry.jivosite.com vk.com www.google-analytics.com www.google.com www.gstatic.com; style-src 'self' 'unsafe-inline' cdn.datatables.net fonts.googleapis.com maxcdn.bootstrapcdn.com |