Content-Security-Policy | default-src 'self' 'unsafe-inline' 'unsafe-eval' data: http://*.yandex.ru http://yandex.ru https://*.yandex.ru https://yandex.ru http://*.google.com http://google.com https://*.google.com https://google.com http://*.google.ru http://google.ru https://*.google.ru https://google.ru http://*.google-analytics.com http://google-analytics.com https://*.google-analytics.com https://google-analytics.com http://*.userapi.com http://userapi.com http://*.yastatic.net http://yastatic.net http://*.yandex.net http://yandex.net https://*.yandex.net https://yandex.net http://*.doubleclick.net http://doubleclick.net https://*.doubleclick.net https://doubleclick.net http://*.gstatic.com http://gstatic.com https://*.gstatic.com https://gstatic.com http://*.googleapis.com http://googleapis.com https://*.googleapis.com https://googleapis.com http://*.googlesyndication.com http://googlesyndication.com https://*.googlesyndication.com https://googlesyndication.com http://*.youtube.com http://youtube.com https://*.youtube.com https://youtube.com http://*.rutube.ru http://rutube.ru http://*.vimeo.com http://vimeo.com http://*.vk.com http://vk.com https://*.vk.com https://vk.com https://*.twitter.com https://twitter.com https://*.facebook.com https://facebook.com http://*.mail.ru http://mail.ru pipe.skype.com *.rambler.ru cityads.com counter.yadro.ru extsrcjs.googlecode.com *.mydiv.net mydiv.net mydiv.net ; img-src 'self' data: * ; report-uri /csp-colliections; |