From 52599dd90035863726f7a28631305303eb061889 Mon Sep 17 00:00:00 2001
From: wukko <me@wukko.me>
Date: Wed, 18 Sep 2024 19:16:23 +0600
Subject: [PATCH] web/headers: update csp yet again

whatever dude
---
 web/src/routes/_headers/+server.ts | 10 +---------
 1 file changed, 1 insertion(+), 9 deletions(-)

diff --git a/web/src/routes/_headers/+server.ts b/web/src/routes/_headers/+server.ts
index 96e00a8c..708d69ac 100644
--- a/web/src/routes/_headers/+server.ts
+++ b/web/src/routes/_headers/+server.ts
@@ -9,15 +9,7 @@ const allowedScriptOrigins = [
 export async function GET() {
     const CSP = {
         "connect-src": ["*"],
-        "default-src": ["'none'"],
-
-        "font-src": ["'self'"],
-        "style-src": ["'self'"],
-        "style-src-attr": ["'self'"],
-        "style-src-elem": ["'self'"],
-        "img-src": ["'self'", "data:"],
-        "manifest-src": ["'self'"],
-        "worker-src": ["'self'"],
+        "default-src": ["'self'"],
 
         "script-src": allowedScriptOrigins,
         "script-src-attr": allowedScriptOrigins,