From 41689406c87990eb8c6200a62b1baa7c1705dd31 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?L=C3=A9o=20Colombaro?= <git@colombaro.fr>
Date: Wed, 31 Jul 2019 15:31:17 +0200
Subject: [PATCH] Expand responses to include CSP

Ref: https://github.com/h5bp/server-configs-apache/issues/187
---
 nginx.conf | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/nginx.conf b/nginx.conf
index 94a4b0a..78d1453 100644
--- a/nginx.conf
+++ b/nginx.conf
@@ -112,7 +112,7 @@ http {
   # Add Content-Security-Policy for HTML documents.
   # h5bp/security/content-security-policy.conf
   map $sent_http_content_type $content_security_policy {
-    ~*text/html "default-src 'self'; base-uri 'none'; form-action 'self'; frame-ancestors 'none'; upgrade-insecure-requests";
+    ~*text/(html|javascript)|application/pdf|xml "default-src 'self'; base-uri 'none'; form-action 'self'; frame-ancestors 'none'; upgrade-insecure-requests";
   }
 
   # Add Referrer-Policy for HTML documents.