-
Notifications
You must be signed in to change notification settings - Fork 0
/
web.config
13 lines (13 loc) · 4.16 KB
/
web.config
1
2
3
4
5
6
7
8
9
10
11
12
13
<?xml version="1.0" encoding="UTF-8"?>
<configuration>
<system.webServer>
<httpProtocol>
<customHeaders>
<add name="Content-Security-Policy" value="default-src 'none'; script-src 'self' 'report-sample' 'unsafe-inline' gitcdn.xyz hcaptcha.com newassets.hcaptcha.com platform.twitter.com cdn.syndication.twimg.com www.google-analytics.com; style-src 'self' 'report-sample' 'unsafe-inline' nmscd.github.io fonts.googleapis.com platform.twitter.com; img-src 'self' data: gitcdn.xyz github-readme-stats.vercel.app raw.githubusercontent.com kurtlourens.com cdn.assistantapps.com blog.kurtlourens.com khaoznet.visualstudio.com vsrm.dev.azure.com khaoznet.vsrm.visualstudio.com abs.twimg.com pbs.twimg.com; font-src 'self' data: nmscd.github.io fonts.gstatic.com; connect-src kurtlourens.com api.assistantapps.com playground.kurtlourens.com; manifest-src https://kurtlourens.com/manifest.json https://playground.kurtlourens.com/manifest.json; base-uri 'self'; form-action 'none'; report-uri 'none'; frame-src discord.com www.google.com api.assistantapps.com api.nmsassistant.com app.nmsassistant.com scrapassistant.com api.scrapassistant.com kurtlourens.com monitor.kurtlourens.com presentation.kurtlourens.com open.spotify.com cristurm.github.io culture.entelect.co.za newassets.hcaptcha.com github1s.com platform.twitter.com; frame-ancestors app.nmsassistant.com kurtlourens.com; upgrade-insecure-requests;" />
<add name="X-Content-Security-Policy" value="default-src 'none'; script-src 'self' 'report-sample' 'unsafe-inline' gitcdn.xyz hcaptcha.com newassets.hcaptcha.com platform.twitter.com cdn.syndication.twimg.com www.google-analytics.com; style-src 'self' 'report-sample' 'unsafe-inline' nmscd.github.io fonts.googleapis.com platform.twitter.com; img-src 'self' data: gitcdn.xyz github-readme-stats.vercel.app raw.githubusercontent.com kurtlourens.com cdn.assistantapps.com blog.kurtlourens.com khaoznet.visualstudio.com vsrm.dev.azure.com khaoznet.vsrm.visualstudio.com abs.twimg.com pbs.twimg.com; font-src 'self' data: nmscd.github.io fonts.gstatic.com; connect-src kurtlourens.com api.assistantapps.com playground.kurtlourens.com; manifest-src https://kurtlourens.com/manifest.json https://playground.kurtlourens.com/manifest.json; base-uri 'self'; form-action 'none'; report-uri 'none'; frame-src discord.com www.google.com api.assistantapps.com api.nmsassistant.com app.nmsassistant.com scrapassistant.com api.scrapassistant.com kurtlourens.com monitor.kurtlourens.com presentation.kurtlourens.com open.spotify.com cristurm.github.io culture.entelect.co.za newassets.hcaptcha.com github1s.com platform.twitter.com; frame-ancestors app.nmsassistant.com kurtlourens.com; upgrade-insecure-requests;" />
<add name="X-WebKit-CSP" value="default-src 'none'; script-src 'self' 'report-sample' 'unsafe-inline' gitcdn.xyz hcaptcha.com newassets.hcaptcha.com platform.twitter.com cdn.syndication.twimg.com www.google-analytics.com; style-src 'self' 'report-sample' 'unsafe-inline' nmscd.github.io fonts.googleapis.com platform.twitter.com; img-src 'self' data: gitcdn.xyz github-readme-stats.vercel.app raw.githubusercontent.com kurtlourens.com cdn.assistantapps.com blog.kurtlourens.com khaoznet.visualstudio.com vsrm.dev.azure.com khaoznet.vsrm.visualstudio.com abs.twimg.com pbs.twimg.com; font-src 'self' data: nmscd.github.io fonts.gstatic.com; connect-src kurtlourens.com api.assistantapps.com playground.kurtlourens.com; manifest-src https://kurtlourens.com/manifest.json https://playground.kurtlourens.com/manifest.json; base-uri 'self'; form-action 'none'; report-uri 'none'; frame-src discord.com www.google.com api.assistantapps.com api.nmsassistant.com app.nmsassistant.com scrapassistant.com api.scrapassistant.com kurtlourens.com monitor.kurtlourens.com presentation.kurtlourens.com open.spotify.com cristurm.github.io culture.entelect.co.za newassets.hcaptcha.com github1s.com platform.twitter.com; frame-ancestors app.nmsassistant.com kurtlourens.com; upgrade-insecure-requests;" />
<add name="Set-Cookie" value="cross-site-cookie=name; SameSite=None; Secure" />
</customHeaders>
</httpProtocol>
</system.webServer>
</configuration>