mirror of
https://github.com/moparisthebest/mail
synced 2024-12-22 23:38:48 -05:00
add csp in index.html meta tag and remove sandboxed csp directives from chrome mainfest
This commit is contained in:
parent
74f52ef52c
commit
08bf80d5ae
@ -3,6 +3,7 @@
|
||||
<head>
|
||||
<meta charset="utf-8">
|
||||
<meta name="viewport" content="width=device-width, initial-scale=1.0">
|
||||
<meta http-equiv="Content-Security-Policy" content="default-src 'self'; connect-src *; style-src 'self' data: chrome-extension-resource: 'unsafe-inline'; img-src 'self' data: chrome-extension-resource:; frame-src 'self' data: chrome-extension-resource:; font-src 'self' data: chrome-extension-resource:; media-src *;">
|
||||
<title>Mail</title>
|
||||
|
||||
<link href="css/reset.css" rel="stylesheet">
|
||||
|
@ -28,9 +28,5 @@
|
||||
"background": {
|
||||
"scripts": ["background.js"]
|
||||
}
|
||||
},
|
||||
"sandbox": {
|
||||
"pages": ["sandbox.html", "mail-content.html"],
|
||||
"content_security_policy": "sandbox allow-scripts; default-src 'self'; object-src 'none'; script-src 'self' 'unsafe-eval'; style-src 'self' 'unsafe-inline'; img-src *; frame-src *"
|
||||
}
|
||||
}
|
Loading…
Reference in New Issue
Block a user