Allow All Content Security Policy?

by

For people who still want an even more permissive posts, because the other answers were just not permissive enough, and they must work with google chrome for which * is just not enough:

default-src *  data: blob: filesystem: about: ws: wss: 'unsafe-inline' 'unsafe-eval' 'unsafe-dynamic'; 
script-src * data: blob: 'unsafe-inline' 'unsafe-eval'; 
connect-src * data: blob: 'unsafe-inline'; 
img-src * data: blob: 'unsafe-inline'; 
frame-src * data: blob: ; 
style-src * data: blob: 'unsafe-inline';
font-src * data: blob: 'unsafe-inline';
frame-ancestors * data: blob: 'unsafe-inline';

More Related Contents:

  1. How does Content Security Policy (CSP) work?
  2. WordPress or building site on own? Which is more cost efficient?
  3. jQuery .animate function not responding properly
  4. how can i extract text and image in PDF file using php or javascript [closed]
  5. The Chrome extension popup is not working, click events are not handled
  6. Access Control Request Headers, is added to header in AJAX request with jQuery
  7. HTTP HEAD Request in Javascript/Ajax?
  8. How to make ng-bind-html compile angularjs code
  9. How do I access the HTTP request header fields via JavaScript?
  10. Sanitizing user input before adding it to the DOM in Javascript
  11. How can I make the browser wait to display the page until it’s fully loaded?
  12. User recognition without cookies or local storage
  13. How do you use window.postMessage across domains?
  14. Content Security Policy: The page’s settings blocked the loading of a resource
  15. Get and store cookie (from Set-Cookie) from an AJAX POST response
  16. Adding a custom header to HTTP request using angular.js
  17. Creating common controller functions
  18. “Status Code:200 OK (from ServiceWorker)” in Chrome Network DevTools?
  19. Console shows error about Content Security policy and lots of failed GET requests
  20. Cannot handle 302 redirect in ajax and why? [duplicate]
  21. Cross-site XMLHttpRequest
  22. Content-Security-Policy error in google chrome extension making
  23. How can I read the current headers without making a new request with JS? [duplicate]
  24. Get the content (text) of an URL after Javascript has run with PHP
  25. Resize external website content to fit iFrame width
  26. how to set content-disposition = attachment via javascript?
  27. Web application access user’s file system
  28. Google Adwords CSP (content security policy) img-src
  29. What makes an input vulnerable to XSS?
  30. Can’t get rid of header X-Powered-By:Express

Leave a Comment