From e9d9d4baed55538cbcb25a399a8450d0ace91162 Mon Sep 17 00:00:00 2001
From: Andrew Simonson <asimonson1125@gmail.com>
Date: Sun, 29 Jan 2023 12:27:55 -0600
Subject: [PATCH] fix security policies

---
 flask.conf | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/flask.conf b/flask.conf
index 82c9ee8..58fa085 100644
--- a/flask.conf
+++ b/flask.conf
@@ -1,15 +1,15 @@
 server {
     listen      8080;
 
-    server_name _;
-    add_header Content-Security-Policy "default-src 'self';";
+    server_name asimonson.com;
+    add_header Content-Security-Policy "default-src 'self' 'unsafe-inline' *.chesscomfiles.com *.chess.com *.googletagmanager.com cdn.jsdelivr.net www.google-analytics.com ajax.googleapis.com;";
     add_header Strict-Transport-Security "max-age=31536000; includeSubDomains" always;
 
-    return 301 https://asimonson.com$request_uri;
-
     location / {
         proxy_pass http://localhost:5000/;
         proxy_set_header Host $host;
         proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
     }
+
+    return 301 https://$server_name$request_uri;
 }