Fork me on GitHub
Ahmed Hassan06:05:59

How do I tweak Content Security Policy in Pedestal?


Inside service-map

::http/port 8080
::http/secure-headers {:content-security-policy-settings content-security-policy-settings}

✔️ 4

docs aren't awesome, but you can checkout the sources. it's just a bunch of string concat/join

Ahmed Hassan08:05:05

So, If I have set up http/secure-headers in service-map I do not need to include <meta http-equiv="Content-Security-Policy" content="default-src ; child-src 'none'; object-src 'none'"> Tag in html. Right?