From 7a64053cb818931e38af8c9138a259a711ea4da7 Mon Sep 17 00:00:00 2001
From: Frédéric Guillot <fred@kanboard.net>
Date: Mon, 7 Jul 2014 19:37:19 -0300
Subject: Improve javascript code and remove CSP errors

---
 app/Controller/Base.php | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

(limited to 'app/Controller')

diff --git a/app/Controller/Base.php b/app/Controller/Base.php
index 25a72f15..8890db4c 100644
--- a/app/Controller/Base.php
+++ b/app/Controller/Base.php
@@ -107,7 +107,7 @@ abstract class Base
         $this->session->open(BASE_URL_DIRECTORY, SESSION_SAVE_PATH);
 
         // HTTP secure headers
-        $this->response->csp();
+        $this->response->csp(array('style-src' => "'self' 'unsafe-inline'"));
         $this->response->nosniff();
         $this->response->xss();
         $this->response->hsts();
-- 
cgit v1.2.3