diff options
| author | Kohei Yoshino <kohei.yoshino@gmail.com> | 2017-11-28 17:27:54 +0100 |
|---|---|---|
| committer | Dylan William Hardison <dylan@hardison.net> | 2017-11-28 17:27:54 +0100 |
| commit | 064427551b0dfd6a383f59367d1efd16a86d5251 (patch) | |
| tree | 24788f56412d8f16d36207f119b1fcd16e0bd5b0 /Bugzilla/CGI.pm | |
| parent | 5d70ba4413fde42de842105a76f95cd4b54c1825 (diff) | |
| download | bugzilla-064427551b0dfd6a383f59367d1efd16a86d5251.tar.gz bugzilla-064427551b0dfd6a383f59367d1efd16a86d5251.tar.xz | |
Bug 1379607 - Reimplement Google Analytics on bugzilla.mozilla.org
Diffstat (limited to 'Bugzilla/CGI.pm')
| -rw-r--r-- | Bugzilla/CGI.pm | 8 |
1 files changed, 4 insertions, 4 deletions
diff --git a/Bugzilla/CGI.pm b/Bugzilla/CGI.pm index 248ee12cb..ea8d96da8 100644 --- a/Bugzilla/CGI.pm +++ b/Bugzilla/CGI.pm @@ -34,9 +34,9 @@ BEGIN { sub DEFAULT_CSP { my %policy = ( default_src => [ 'self' ], - script_src => [ 'self', 'unsafe-inline', 'unsafe-eval' ], + script_src => [ 'self', 'unsafe-inline', 'unsafe-eval', 'https://www.google-analytics.com' ], child_src => [ 'self', ], - img_src => [ 'self', 'https://secure.gravatar.com' ], + img_src => [ 'self', 'https://secure.gravatar.com', 'https://www.google-analytics.com' ], style_src => [ 'self', 'unsafe-inline' ], object_src => [ 'none' ], form_action => [ @@ -61,9 +61,9 @@ sub DEFAULT_CSP { sub SHOW_BUG_MODAL_CSP { my ($bug_id) = @_; my %policy = ( - script_src => ['self', 'nonce', 'unsafe-inline', 'unsafe-eval' ], + script_src => ['self', 'nonce', 'unsafe-inline', 'unsafe-eval', 'https://www.google-analytics.com' ], object_src => [correct_urlbase() . "extensions/BugModal/web/ZeroClipboard/ZeroClipboard.swf"], - img_src => [ 'self', 'https://secure.gravatar.com' ], + img_src => [ 'self', 'https://secure.gravatar.com', 'https://www.google-analytics.com' ], connect_src => [ 'self', # This is from extensions/OrangeFactor/web/js/orange_factor.js |