release

2025-06-13 12:24:35 +08:00
parent 1caae33c43
commit 6dfe3e0677
74 changed files with 1497 additions and 253 deletions
--- a/app/Support/MyCustomPolicy.php
+++ b/app/Support/MyCustomPolicy.php
@ -0,0 +1,43 @@
+<?php
+namespace App\Support;
+
+use Spatie\Csp\Directive;
+use Spatie\Csp\Policies\Basic;
+
+class MyCustomPolicy extends Basic
+{
+    public function configure()
+    {
+        parent::configure();
+	$this->addDirective(Directive::FRAME, [
+                //\Spatie\Csp\Keyword::UNSAFE_INLINE,
+                \Spatie\Csp\Keyword::SELF,
+                //\Spatie\Csp\Keyword::UNSAFE_HASHES,
+                'www.google.com'
+        ]);       
+        $this->addDirective(Directive::STYLE, [
+		//\Spatie\Csp\Keyword::UNSAFE_INLINE,
+		\Spatie\Csp\Keyword::SELF,
+		//\Spatie\Csp\Keyword::UNSAFE_HASHES,
+		'fonts.googleapis.com'
+	]);
+	$this->addDirective(Directive::SCRIPT, [
+                // \Spatie\Csp\Keyword::UNSAFE_INLINE,
+		\Spatie\Csp\Keyword::SELF,
+                //\Spatie\Csp\Keyword::UNSAFE_HASHES,
+                'fonts.googleapis.com'
+        ]);
+	$this->addDirective(Directive::FONT, [
+		\Spatie\Csp\Keyword::STRICT_DYNAMIC,
+       		\Spatie\Csp\Keyword::SELF,
+		'fonts.gstatic.com'
+	]);
+	$this->addDirective(Directive::IMG, [
+                \Spatie\Csp\Keyword::STRICT_DYNAMIC,
+                \Spatie\Csp\Keyword::SELF,
+		'data:'
+        ]);
+	$this->addNonceForDirective(Directive::SCRIPT)
+        	->addNonceForDirective(Directive::STYLE);
+    }
+}