From 896a45d66e77cbf66244b718e93082e9e6cc6ed0 Mon Sep 17 00:00:00 2001
From: labkey-willm <97046018+labkey-willm@users.noreply.github.com>
Date: Thu, 20 Feb 2025 17:47:23 +0000
Subject: [PATCH] update CSP to match commit
 32152ad0e249d541e5a987cfd52317ec8e3263de

---
 application.properties | 7 ++++---
 1 file changed, 4 insertions(+), 3 deletions(-)

diff --git a/application.properties b/application.properties
index 01033e4..98e487e 100644
--- a/application.properties
+++ b/application.properties
@@ -166,15 +166,16 @@ context.workDirLocation=/work/Tomcat/localhost
 ## START OF CSP ENFORCE BLOCK (DO NOT CHANGE THIS TEXT)
 csp.enforce=\
     default-src 'self' https: ;\
-    connect-src 'self' ${LABKEY.ALLOWED.CONNECTIONS} ;\
+    connect-src 'self' ${CONNECTION.SOURCES} ;\
     object-src 'none' ;\
-    style-src 'self' https: 'unsafe-inline' ;\
+    style-src 'self' https: 'unsafe-inline' ${STYLE.SOURCES} ;\
     img-src 'self' https: data: ;\
-    font-src 'self' data: ;\
+    font-src 'self' data: ${FONT.SOURCES} ;\
     script-src 'self' 'unsafe-eval' 'strict-dynamic' 'nonce-${REQUEST.SCRIPT.NONCE}' ;\
     base-uri 'self' ;\
     upgrade-insecure-requests ;\
     frame-ancestors 'self' ;\
+    frame-src 'self' ${FRAME.SOURCES} ;\
     report-uri https://www.labkey.org/admin-contentsecuritypolicyreport.api?${CSP.REPORT.PARAMS} ;
 ## END OF CSP ENFORCE BLOCK (DO NOT CHANGE THIS TEXT)