Enable 'self' in Content-Security-Policy worker-src directive
What does this MR do and why?
In GitLab development, Vite appears to load workers from the GitLab
origin. Add 'self'
to allow those requests.
This originally was discovered in !147366 (comment 1822665318).
How to set up and validate locally
- Check out this branch.
- With the Network inspector open, visit a project page.
- Verify that the
Content-Security-Policy
header contains'self'
forworker-src
.
Edited by Stan Hu