whitelist the akamaihd.net url that Facebook uses to host profile images
parent
1660097544
commit
f82a86ca93
3
app.js
3
app.js
|
@ -137,12 +137,13 @@ app.use(helmet.contentSecurityPolicy({
|
||||||
styleSrc: trusted,
|
styleSrc: trusted,
|
||||||
imgSrc: [
|
imgSrc: [
|
||||||
'*.evernote.com',
|
'*.evernote.com',
|
||||||
'*.facebook.com',
|
|
||||||
'*.amazonaws.com',
|
'*.amazonaws.com',
|
||||||
'data:',
|
'data:',
|
||||||
'*.licdn.com',
|
'*.licdn.com',
|
||||||
'*.gravatar.com',
|
'*.gravatar.com',
|
||||||
'*.youtube.com',
|
'*.youtube.com',
|
||||||
|
'*.akamaihd.net',
|
||||||
|
'graph.facebook.com',
|
||||||
'*.githubusercontent.com',
|
'*.githubusercontent.com',
|
||||||
'*.googleusercontent.com',
|
'*.googleusercontent.com',
|
||||||
].concat(trusted),
|
].concat(trusted),
|
||||||
|
|
Loading…
Reference in New Issue