update script-src CSP rules for iD

2024-05-26 15:24:57 +02:00 · 2024-05-26 15:24:57 +02:00 · 416fca5703
commit 416fca5703
parent affa9bbf15
1 changed files with 0 additions and 1 deletions
--- a/app/controllers/site_controller.rb
+++ b/app/controllers/site_controller.rb
@ -19,7 +19,6 @@ class SiteController < ApplicationController
  content_security_policy(:only => :id) do |policy|
    policy.connect_src("*")
    policy.img_src("*", :blob)
-    policy.script_src(*policy.script_src, "dev.virtualearth.net", :unsafe_eval)
    policy.style_src(*policy.style_src, :unsafe_inline)
  end