Is it possible to configure "content security policy" for domains like *.googleapis.com where I'll have unsafe-eval enabled, but for my own website (self) it will be disabled?
I looked at the doc, Internet, RFCs for hours and found nothing about that. Seems like it's impossible, wanted to ask community.
Aucun commentaire:
Enregistrer un commentaire