Content-Security-Policy | connect-src 'self' https://api.suraenlinea.com https://nominatim.openstreetmap.org https://suraenlinea.prismic.io https://*.googlevideo.com https://*.hotjar.com wss://*.hotjar.com; script-src 'self' https://js.stripe.com https://s.ytimg.com https://*.uservoice.com https://www.googletagmanager.com https://www.google-analytics.com https://www.youtube.com https://*.hotjar.com https://*.visualwebsiteoptimizer.com https://www.googleadservices.com https://connect.facebook.net https://platform.twitter.com 'unsafe-inline' 'unsafe-eval'; img-src 'self' https://res.cloudinary.com https://prismic-io.s3.amazonaws.com https://www.google-analytics.com https://www.googleadservices.com https://*.doubleclick.net https://www.google.com https://www.facebook.com https://*.twitter.com https://t.co https://www.google.com.co; media-src https://www.youtube.com; style-src 'self' https://fonts.googleapis.com 'unsafe-inline'; |