From f606cd28261927f2adfea5ec33043a8bab312731 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Sandro=20J=C3=A4ckel?= <sandro.jaeckel@gmail.com>
Date: Fri, 6 Apr 2018 21:16:22 +0200
Subject: [PATCH] Allow inline script source

---
 conf/nginx.conf | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/conf/nginx.conf b/conf/nginx.conf
index fde6590..b9549c1 100644
--- a/conf/nginx.conf
+++ b/conf/nginx.conf
@@ -15,6 +15,8 @@ location ~ __PATH__/(?<ndpath>.*) {
     proxy_set_header Connection "keep-alive";
     proxy_store off;
     proxy_pass http://127.0.0.1:19999/$ndpath$is_args$args;
+    
+    add_header Content-Security-Policy "upgrade-insecure-requests; object-src 'none'; script-src https: 'unsafe-eval' 'unsafe-inline'";
 
     gzip on;
     gzip_proxied any;