Content-Security-Policy | default-src www.google.com;script-src 'self' 'unsafe-inline' ajax.googleapis.com ajax.aspnetcdn.com maxcdn.bootstrapcdn.com cdnjs.cloudflare.com;style-src 'self' 'unsafe-inline' maxcdn.bootstrapcdn.com fonts.googleapis.com cdnjs.cloudflare.com;img-src 'self' *.bvz-frankfurt.info *.dmde.info cdnjs.cloudflare.com;frame-src www.google.com;font-src 'self' maxcdn.bootstrapcdn.com;connect-src 'self' *.bvz-frankfurt.info *.dmde.info;form-action 'self';report-uri /WebResource.axd?cspReport=true |