Skip to content

Commit

Permalink
chore: adding Content-Security-Policy (CSP)
Browse files Browse the repository at this point in the history
  • Loading branch information
kiraum committed Oct 5, 2024
1 parent e9c65f2 commit 9332a08
Showing 1 changed file with 3 additions and 2 deletions.
5 changes: 3 additions & 2 deletions modules/static_website/main.tf
Original file line number Diff line number Diff line change
Expand Up @@ -441,8 +441,9 @@ resource "aws_cloudfront_response_headers_policy" "security_headers_policy" {
preload = true
override = true
}
content_type_options {
override = true
content_security_policy {
content_security_policy = "default-src 'self'; script-src 'self' 'unsafe-inline'; style-src 'self' 'unsafe-inline'; img-src 'self' data:; font-src 'self' data:;"
override = true
}
}
}

0 comments on commit 9332a08

Please sign in to comment.