Merge branch 'bugfix/csp-unproxied' into 'develop'

author rinpatch <rinpatch@sdf.org>

Fri, 29 May 2020 21:23:49 +0000 (21:23 +0000)

committer rinpatch <rinpatch@sdf.org>

Fri, 12 Jun 2020 17:43:36 +0000 (20:43 +0300)
author rinpatch <rinpatch@sdf.org>
Fri, 29 May 2020 21:23:49 +0000 (21:23 +0000)
committer rinpatch <rinpatch@sdf.org>
Fri, 12 Jun 2020 17:43:36 +0000 (20:43 +0300)
diff --git a/lib/pleroma/plugs/http_security_plug.ex b/lib/pleroma/plugs/http_security_plug.ex

index 2208d1d6ce7c5127867fc5b363ef7bb6a470903f..58907253558c8a2656f31b72e808f0de0db34ccf 100644 (file)
--- a/lib/pleroma/plugs/http_security_plug.ex
+++ b/lib/pleroma/plugs/http_security_plug.ex
@@ -75,7 +75,7 @@ defmodule Pleroma.Plugs.HTTPSecurityPlug do
          sources = get_proxy_and_attachment_sources()
          {[img_src, sources], [media_src, sources]}
        else
-        {img_src, media_src}
+        {[img_src, " https:"], [media_src, " https:"]}
        end
  
      connect_src = ["connect-src 'self' ", static_url, ?\s, websocket_url]
author	rinpatch <rinpatch@sdf.org>
	Fri, 29 May 2020 21:23:49 +0000 (21:23 +0000)
committer	rinpatch <rinpatch@sdf.org>
	Fri, 12 Jun 2020 17:43:36 +0000 (20:43 +0300)