From f0bd8d0ea638e25c62e1016a765c8d18873be98c Mon Sep 17 00:00:00 2001
From: Jonas Tobias Hopusch <git@jotoho.de>
Date: Sat, 25 Mar 2023 14:10:53 +0100
Subject: [PATCH] Tweak CORS rules for www.jotoho.de

---
 www.jotoho.de/Caddyfile | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/www.jotoho.de/Caddyfile b/www.jotoho.de/Caddyfile
index a7dc980..a254b5d 100644
--- a/www.jotoho.de/Caddyfile
+++ b/www.jotoho.de/Caddyfile
@@ -1,6 +1,6 @@
 http://www.jotoho.de
 
-header Content-Security-Policy "default-src 'self' https://jotoho.de https://*.jotoho.de; base-uri 'self' https://jotoho.de https://*.jotoho.de; upgrade-insecure-requests;"
+header Content-Security-Policy "default-src 'self' https://jotoho.de https://*.jotoho.de 'unsafe-inline' 'strict-dynamic'; base-uri https://jotoho.de https://*.jotoho.de; object-src 'none'; frame-ancestors 'none'; upgrade-insecure-requests;"
 
 file_server {
     root /site/