From b0e0d68632b2cfe2ba3da8d704e88ef67755ba71 Mon Sep 17 00:00:00 2001 From: Jeremy Lin Date: Tue, 11 Oct 2022 21:27:15 -0700 Subject: [PATCH] Update CSP for DuckDuckGo email forwarding Upstream PR: https://github.com/bitwarden/clients/pull/3630 --- src/util.rs | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/src/util.rs b/src/util.rs index afd82db1..90bf7a73 100644 --- a/src/util.rs +++ b/src/util.rs @@ -60,7 +60,7 @@ impl Fairing for AppHeaders { // Leaked Passwords check: api.pwnedpasswords.com // 2FA/MFA Site check: 2fa.directory // # Mail Relay: https://bitwarden.com/blog/add-privacy-and-security-using-email-aliases-with-bitwarden/ - // app.simplelogin.io, app.anonaddy.com, api.fastmail.com + // app.simplelogin.io, app.anonaddy.com, api.fastmail.com, quack.duckduckgo.com let csp = format!( "default-src 'self'; \ object-src 'self' blob:; \ @@ -83,6 +83,7 @@ impl Fairing for AppHeaders { https://app.simplelogin.io/api/ \ https://app.anonaddy.com/api/ \ https://api.fastmail.com/ \ + https://quack.duckduckgo.com/api/email/ \ ;\ ", icon_service_csp = CONFIG._icon_service_csp(),