Content-Security-Policy | default-src 'self' ; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://s3.amazonaws.com https://rockpos.com https://maps.googleapis.com https://maps.gstatic.com https://code.jquery.com https://lightwidget.com https://checkout.stripe.com https://www.google-analytics.com/ https://js.stripe.com https://maps.google.com https://cdn.datatables.net https://ajax.googleapis.com https://ssl.google-analytics.com https://use.fontawesome.com https://cdnjs.cloudflare.com https://connect.facebook.net; img-src 'self' data: https://maps.googleapis.com https://csi.gstatic.com https://maps.google.com http://bien-fait-paris.com https://maps.gstatic.com https://www.google-analytics.com https://q.stripe.com https://www.facebook.com https://ssl.google-analytics.com https://s-static.ak.facebook.com ; style-src 'self' 'unsafe-inline' https://cdn.datatables.net https://fonts.googleapis.com https://use.fontawesome.com; font-src 'self' data: https://themes.googleusercontent.com https://fonts.gstatic.com https://use.fontawesome.com; frame-src https://hooks.stripe.com/ https://lightwidget.com https://www.facebook.com https://s-static.ak.facebook.com https://js.stripe.com; object-src 'self'; connect-src 'self' wss://10.0.0.14:8181 wss://10.0.0.14:8282 wss://10.0.0.14:8383 wss://10.0.0.14:8484 wss://localhost:8181 wss://localhost:8282 wss://localhost:8383 wss://localhost:8484 https://api.stripe.com/v1/ |