edit/page: allow image uploads through easyimage

author Mischa POSLAWSKY <perl@shiar.org>

Sun, 17 May 2020 00:40:31 +0000 (02:40 +0200)

committer Mischa POSLAWSKY <perl@shiar.org>

Wed, 30 Dec 2020 23:22:16 +0000 (00:22 +0100)
author Mischa POSLAWSKY <perl@shiar.org>
Sun, 17 May 2020 00:40:31 +0000 (02:40 +0200)
committer Mischa POSLAWSKY <perl@shiar.org>
Wed, 30 Dec 2020 23:22:16 +0000 (00:22 +0100)
diff --git a/page.php b/page.php

index f7c8f7d1b7841944154d0e99d5c1e3adaed90f44..35a810ac2a9c6702dd2f9900ff3f1ab844dc9eec 100644 (file)
--- a/page.php
+++ b/page.php
@@ -46,7 +46,7 @@ if ($Page->restricted) {
  
  header(sprintf('Content-Security-Policy: %s', implode('; ', [
         "default-src 'self' 'unsafe-inline' http://cdn.ckeditor.com", # some overrides remain
-       "img-src 'self' data: http://cdn.ckeditor.com", # inline svg (in css)
+       "img-src 'self' data: blob: http://cdn.ckeditor.com", # inline svg (in css)
         "base-uri 'self'", # only local pages
         "frame-ancestors 'none'", # prevent malicious embedding
  ])));
author	Mischa POSLAWSKY <perl@shiar.org>
	Sun, 17 May 2020 00:40:31 +0000 (02:40 +0200)
committer	Mischa POSLAWSKY <perl@shiar.org>
	Wed, 30 Dec 2020 23:22:16 +0000 (00:22 +0100)