1
0
Fork 0

fix (2fa.directory): Allow api.2fa.directory, and remove 2fa.directory

Dieser Commit ist enthalten in:
GeekCorner 2023-01-10 09:41:35 +01:00 committet von Daniel García
Ursprung 80eb15d46a
Commit ff919039c9
Es konnte kein GPG-Schlüssel zu dieser Signatur gefunden werden
GPG-Schlüssel-ID: FC8A7D14C3CD543A

Datei anzeigen

@ -50,7 +50,7 @@ impl Fairing for AppHeaders {
// Have I Been Pwned and Gravator to allow those calls to work. // Have I Been Pwned and Gravator to allow those calls to work.
// # Connect src: // # Connect src:
// Leaked Passwords check: api.pwnedpasswords.com // Leaked Passwords check: api.pwnedpasswords.com
// 2FA/MFA Site check: 2fa.directory // 2FA/MFA Site check: api.2fa.directory
// # Mail Relay: https://bitwarden.com/blog/add-privacy-and-security-using-email-aliases-with-bitwarden/ // # Mail Relay: https://bitwarden.com/blog/add-privacy-and-security-using-email-aliases-with-bitwarden/
// app.simplelogin.io, app.anonaddy.com, api.fastmail.com, quack.duckduckgo.com // app.simplelogin.io, app.anonaddy.com, api.fastmail.com, quack.duckduckgo.com
let csp = format!( let csp = format!(
@ -73,7 +73,7 @@ impl Fairing for AppHeaders {
{icon_service_csp}; \ {icon_service_csp}; \
connect-src 'self' \ connect-src 'self' \
https://api.pwnedpasswords.com \ https://api.pwnedpasswords.com \
https://2fa.directory \ https://api.2fa.directory \
https://app.simplelogin.io/api/ \ https://app.simplelogin.io/api/ \
https://app.anonaddy.com/api/ \ https://app.anonaddy.com/api/ \
https://api.fastmail.com/ \ https://api.fastmail.com/ \