Content-Security-Policy | script-src 'self' https://www.google-analytics.com https://static.tipme.in.th/; connect-src 'self' https://www.google-analytics.com https://sentry.io wss://tipme.in.th wss://dev.tipme.in.th; font-src https://cdn.jsdelivr.net; base-uri 'self'; default-src 'none'; img-src 'self' https://static.tipme.in.th/ https://img.tmstreamlabs.cupco.de https://tmsdata.s3.byteark.com; media-src 'self' https://static.tipme.in.th/ https://tmsdata.s3.byteark.com; frame-ancestors 'none'; style-src 'self' 'unsafe-inline' https://cdn.jsdelivr.net https://static.tipme.in.th/; form-action 'self' |