Content-Security-Policy | default-src * data: blob:;script-src 'self' 'unsafe-inline' 'unsafe-eval' *.facebook.com *.fbcdn.net *.facebook.net https://*.google-analytics.com *.google.com *.gstatic.com https://*.gstatic.com *.twitter.com *.twimg.com *.zopim.com az416426.vo.msecnd.net http://*.tawk.to https://*.tawk.to http://*.livechatinc.com https://*.livechatinc.com http://*.providesupport.com https://*.providesupport.com http://*.cloudflare.com https://*.cloudflare.com;object-src 'none';style-src 'unsafe-inline' * data:;media-src http://127.0.0.1:10000 blob: data: http://*.livechatinc.com https://*.livechatinc.com http://*.tawk.to https://*.tawk.to;form-action 'self' *.twitter.com va.tawk.to;frame-ancestors http://*.livechatinc.com https://*.livechatinc.com http://*.tawk.to https://*.tawk.to;report-uri /WebResource.axd?cspReport=true |