From 1d762de2612d5540f97dd09f868c1ea8096e0733 Mon Sep 17 00:00:00 2001
From: Tommy <contact@tommytran.io>
Date: Thu, 17 Nov 2022 23:04:47 -0500
Subject: [PATCH] Update ssl.conf

Signed-off-by: Tommy <contact@tommytran.io>
---
 swag/nginx/ssl.conf | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/swag/nginx/ssl.conf b/swag/nginx/ssl.conf
index cfe52a8..78427e6 100644
--- a/swag/nginx/ssl.conf
+++ b/swag/nginx/ssl.conf
@@ -37,7 +37,7 @@ add_header Strict-Transport-Security "max-age=63072000; includeSubDomains; prelo
 
 # Optional additional headers
 #add_header Cache-Control "no-transform" always;
-add_header Content-Security-Policy "default-src 'none'; connect-src * https:; font-src 'self'; img-src https: blob: data:; manifest-src 'self'; media-src 'self' blob:; script-src https:; style-src 'self' 'unsafe-inline'; frame-src 'self' https://www.recaptcha.net blob:; frame-ancestors 'self'; block-all-mixed-content; base-uri 'none'";
+add_header Content-Security-Policy "default-src 'none'; connect-src * https:; font-src 'self'; img-src https: blob: data:; manifest-src 'self'; media-src *; script-src https:; style-src 'self' 'unsafe-inline'; frame-src 'self' https://www.recaptcha.net blob:; frame-ancestors 'self'; block-all-mixed-content; base-uri 'none'";
 add_header Referrer-Policy "same-origin" always;
 add_header X-Content-Type-Options "nosniff" always;
 #add_header X-UA-Compatible "IE=Edge" always;