CSP: Allow fonts to be provided in data

Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
author: Roeland Jago Douma <roeland@famdouma.nl> 2019-01-07 15:13:34 +0300
committer: Roeland Jago Douma <roeland@famdouma.nl> 2019-01-07 17:07:06 +0300
commit: 64244e1a4fe3d287fc7764e9f64c65777384fff0 (patch)
tree: 8aa09a32117438094d7dfa22c4e183afd3974338 /lib/public/AppFramework
parent: b820803cf1def6a6bfe398d1564dd0d9a3a3a9e0 (diff)
1 files changed, 1 insertions, 0 deletions
diff --git a/lib/public/AppFramework/Http/ContentSecurityPolicy.php b/lib/public/AppFramework/Http/ContentSecurityPolicy.php
index e9ecf000364..68aa4b5ddb4 100644
--- a/lib/public/AppFramework/Http/ContentSecurityPolicy.php
+++ b/lib/public/AppFramework/Http/ContentSecurityPolicy.php
@@ -80,6 +80,7 @@ class ContentSecurityPolicy extends EmptyContentSecurityPolicy {
 	/** @var array Domains from which fonts can be loaded */
 	protected $allowedFontDomains = [
 		'\'self\'',
+		'data:',
 	];
 	/** @var array Domains from which web-workers and nested browsing content can load elements */
 	protected $allowedChildSrcDomains = [];
author	Roeland Jago Douma <roeland@famdouma.nl>	2019-01-07 15:13:34 +0300
committer	Roeland Jago Douma <roeland@famdouma.nl>	2019-01-07 17:07:06 +0300
commit	64244e1a4fe3d287fc7764e9f64c65777384fff0 (patch)
tree	8aa09a32117438094d7dfa22c4e183afd3974338 /lib/public/AppFramework
parent	b820803cf1def6a6bfe398d1564dd0d9a3a3a9e0 (diff)