Content-Security-Policy | default-src 'self' http://*.heatmap.it https://*.heatmap.it; script-src 'self' 'unsafe-inline' 'unsafe-eval' http://www.google-analytics.com https://www.google-analytics.com https://www.googleadservices.com https://cdn.amplitude.com http://heatmap.it https://heatmap.it http://*.heatmap.it https://*.heatmap.it http://fullstory.com https://fullstory.com https://*.stripe.com; connect-src * 'self' http://*.heatmap.it https://*.heatmap.it https://strummachine.com:* ws://strummachine.com:* wss://strummachine.com:*; img-src data: 'self' http://www.google-analytics.com https://www.google-analytics.com https://www.googleadservices.com https://*.g.doubleclick.net http://*.heatmap.it https://*.heatmap.it https://*.stripe.com; style-src 'self' 'unsafe-inline' http://*.heatmap.it https://*.heatmap.it https://*.stripe.com; font-src 'self' data: http://*.heatmap.it https://*.heatmap.it; media-src 'self' data: http://*.heatmap.it https://*.heatmap.it; frame-src 'self' http://www.youtube.com https://www.youtube.com http://fast.wistia.net https://fast.wistia.net http://*.heatmap.it https://*.heatmap.it http://heatmap.it https://heatmap.it https://*.stripe.com; |