default self should always be true

Firesphere · Jun 29, 2023 · 5303e43 · 5303e43
1 parent 70ad819
commit 5303e43
Showing 1 changed file with 1 addition and 0 deletions.
diff --git a/src/Helpers/CSPConvertor.php b/src/Helpers/CSPConvertor.php
@@ -96,6 +96,7 @@ public static function toYml($response, $return = false)
             rsort($parts);
             $arrayHeader[$key]['allow'] = $parts;
         }
+        $arrayHeader['default-src']['self'] = true; // Always allow self
         $data = [
             CSPBackend::class => [
                 'csp_config' => $arrayHeader