From 61c9c4313de25ae75e22e196b2c9db9aeb1d6ed3 Mon Sep 17 00:00:00 2001
From: Dorian Niemiec <dorian.niemiec@svrjs.org>
Date: Mon, 11 Nov 2024 17:00:07 +0100
Subject: [PATCH] docs: update Content Security Policy header value

---
 docs/deployment/pm2-nginx.md | 2 +-
 docs/deployment/svrjs.md     | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/docs/deployment/pm2-nginx.md b/docs/deployment/pm2-nginx.md
index 89a0bd2..507146f 100644
--- a/docs/deployment/pm2-nginx.md
+++ b/docs/deployment/pm2-nginx.md
@@ -49,7 +49,7 @@ server {
     server_name _;
 
     add_header x-content-type-options "nosniff";
-    add_header Content-Security-Policy "default-src 'self'; script-src 'self' 'sha256-VA8O2hAdooB288EpSTrGLl7z3QikbWU9wwoebO/QaYk=' 'sha256-+5XkZFazzJo8n0iOP4ti/cLCMUudTf//Mzkb7xNPXIc=' 'sha256-MS6/3FCg4WjP9gwgaBGwLpRCY6fZBgwmhVCdrPrNf3E=' 'sha256-tQjf8gvb2ROOMapIxFvFAYBeUJ0v1HCbOcSmDNXGtDo='; style-src 'self' 'unsafe-inline'; frame-src 'self' data:";
+    add_header Content-Security-Policy "default-src 'self'; script-src 'self' 'sha256-VA8O2hAdooB288EpSTrGLl7z3QikbWU9wwoebO/QaYk=' 'sha256-+5XkZFazzJo8n0iOP4ti/cLCMUudTf//Mzkb7xNPXIc=' 'sha256-MS6/3FCg4WjP9gwgaBGwLpRCY6fZBgwmhVCdrPrNf3E=' 'sha256-tQjf8gvb2ROOMapIxFvFAYBeUJ0v1HCbOcSmDNXGtDo='; style-src 'self' 'unsafe-inline'; img-src 'self' data: *; frame-src 'self' data:";
     add_header Referrer-Policy "strict-origin-when-cross-origin";
     add_header Permissions-Policy "geolocation=(), camera=(), microphone=(), fullscreen=*";
     add_header Feature-Policy "geolocation 'none', camera 'none', microphone 'none', fullscreen *";
diff --git a/docs/deployment/svrjs.md b/docs/deployment/svrjs.md
index 8014471..851f649 100644
--- a/docs/deployment/svrjs.md
+++ b/docs/deployment/svrjs.md
@@ -22,7 +22,7 @@ Open the `/etc/svrjs-config.json` file in your preferred text editor, and alter
 {
   "customHeaders": {
     "x-content-type-options": "nosniff",
-    "Content-Security-Policy": "default-src 'self'; script-src 'self' 'sha256-VA8O2hAdooB288EpSTrGLl7z3QikbWU9wwoebO/QaYk=' 'sha256-+5XkZFazzJo8n0iOP4ti/cLCMUudTf//Mzkb7xNPXIc=' 'sha256-MS6/3FCg4WjP9gwgaBGwLpRCY6fZBgwmhVCdrPrNf3E=' 'sha256-tQjf8gvb2ROOMapIxFvFAYBeUJ0v1HCbOcSmDNXGtDo='; style-src 'self' 'unsafe-inline'; frame-src 'self' data:",
+    "Content-Security-Policy": "default-src 'self'; script-src 'self' 'sha256-VA8O2hAdooB288EpSTrGLl7z3QikbWU9wwoebO/QaYk=' 'sha256-+5XkZFazzJo8n0iOP4ti/cLCMUudTf//Mzkb7xNPXIc=' 'sha256-MS6/3FCg4WjP9gwgaBGwLpRCY6fZBgwmhVCdrPrNf3E=' 'sha256-tQjf8gvb2ROOMapIxFvFAYBeUJ0v1HCbOcSmDNXGtDo='; style-src 'self' 'unsafe-inline'; img-src 'self' data: *; frame-src 'self' data:",
     "Referrer-Policy": "strict-origin-when-cross-origin",
     "Permissions-Policy": "geolocation=(), camera=(), microphone=(), fullscreen=*",
     "Feature-Policy": "geolocation 'none', camera 'none', microphone 'none', fullscreen *"