From 8691deee685a171c898237654fadb311cea13dad Mon Sep 17 00:00:00 2001
From: "P. Douglas Reeder" <reeder.29@gmail.com>
Date: Wed, 16 Feb 2022 10:10:17 -0500
Subject: [PATCH] Removes Content-Security-Policy-Report-Only header

---
 conf/nginx/security.conf.inc | 1 -
 1 file changed, 1 deletion(-)

diff --git a/conf/nginx/security.conf.inc b/conf/nginx/security.conf.inc
index c86456fd9..8b7f68f2f 100644
--- a/conf/nginx/security.conf.inc
+++ b/conf/nginx/security.conf.inc
@@ -45,7 +45,6 @@ header_filter_by_lua_block {
     ngx.header["Content-Security-Policy"] = "upgrade-insecure-requests"
   end
 }
-more_set_headers "Content-Security-Policy-Report-Only : default-src https: data: blob: ; object-src https: data: 'unsafe-inline'; style-src https: data: 'unsafe-inline' ; script-src https: data: 'unsafe-inline' 'unsafe-eval'";
 {% endif %}
 
 # Disable the disaster privacy thing that is FLoC