Content-Security-Policy | default-src 'self' 'unsafe-inline' 'unsafe-eval' *.bergop.net; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.bergop.net unpkg.com www.google.com ajax.googleapis.com www.gstatic.com; style-src 'self' 'unsafe-inline' 'unsafe-eval' *.bergop.net maxcdn.bootstrapcdn.com fonts.googleapis.com; font-src 'self' 'unsafe-inline' 'unsafe-eval' fonts.gstatic.com; connect-src 'self' 'unsafe-inline' 'unsafe-eval' *.bergop.net www.google.com; img-src 'self' 'unsafe-inline' 'unsafe-eval' *.bergop.net www.google.com data: blob: filesystem: mediastream:; object-src 'self' 'unsafe-inline' 'unsafe-eval' *.bergop.net www.google.com; frame-src 'self' 'unsafe-inline' 'unsafe-eval' *.bergop.net www.google.com; frame-ancestors *; |