Content-Security-Policy | default-src 'self'; img-src 'self' www.google-analytics.com www.facebook.com operation.notimeapi.com stats.g.doubleclick.net nt-widget.azurewebsites.net www.google.com data: blob:; style-src 'self' 'unsafe-inline' fonts.googleapis.com operation.notimeapi.com nt-widget.azurewebsites.net; font-src 'self' fonts.gstatic.com operation.notimeapi.com nt-widget.azurewebsites.net; script-src 'self' 'unsafe-inline' www.googletagmanager.com www.google-analytics.com connect.facebook.net assets.zendesk.com operation.notimeapi.com nt-widget.azurewebsites.net code.jquery.com data:; frame-src 'self' www.youtube.com assets.zendesk.com; connect-src 'self' notime.zendesk.com operation.notimeapi.com nt-widget.azurewebsites.net; media-src notimestaging.blob.core.windows.net |