Content-Security-Policy-Report-Only | default-src https:; img-src 'self' s3-eu-west-1.amazonaws.com:* *.fbcdn.net:* *.facebook.com:* maps.googleapis.com:* maps.gstatic.com:* *.gravatar.com:* thumbnailer.mixcloud.com:* csi.gstatic.com:*; font-src 'self' fonts.googleapis.com:* fonts.gstatic.com:* data:; script-src 'self' 'nonce-MjAyZTI5ZmE0MzNjYjgxYmQ2NWEyNDdkMmZhOGQxODI2Yzc3MmMyMTk1ODk3OWJmNTNmMjdlMmVhZmNiMjQ0Y2MxZjI5YzkxMTc4NTdmN2I4MTc4ZWVkZWU2MGQ3MTg4M2NjYWYyOGNkOTcxZmQwZWUxNGY1ZGI0ZGNhNjcwNDY=' maps.googleapis.com:* cdn.jsdelivr.net:* contentz.mkt61.net:*; style-src 'self' 'unsafe-inline' fonts.googleapis.com:* fonts.gstatic.com:*; media-src 'none'; object-src 'none'; frame-src *.youtube.com:*; report-uri https://o2touch.report-uri.io/r/default/csp/enforce upgrade-insecure-requests |