donelias, hace 1 año a random en CSP Header for a #Mastodon instance without a CDN: Content-Security-Policy "default-src 'self'; frame-ancestors 'self'; form-action 'self'; upgrade-insecure-requests; img-src 'self' data:; connect-src 'self' ws:;" #MastoAdmin #WebSecurity #FediAdmin
CSP Header for a #Mastodon instance without a CDN:
Content-Security-Policy "default-src 'self'; frame-ancestors 'self'; form-action 'self'; upgrade-insecure-requests; img-src 'self' data:; connect-src 'self' ws:;"
#MastoAdmin #WebSecurity #FediAdmin