Content-Security-Policy | default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' cdnjs.cloudflare.com cdn.datatables.net cdn.socket.io *.gstatic.com *.google.com *.google-analytics.com connect.facebook.net; img-src 'self' data: *.gstatic.com *.google-analytics.com *.facebook.com cdn.datatables.net twemoji.maxcdn.com; style-src 'self' 'unsafe-inline' fonts.googleapis.com cdn.datatables.net; font-src 'self' data: fonts.gstatic.com; frame-src 'self' *.google.com *.facebook.com; connect-src *; |