Add Content-Security-Policy to HTTP response header
Add Content-Security-Policy to all HTTP response headers. Should only allow resources from the same origin (with a few exceptions)
Add Content-Security-Policy to all HTTP response headers. Should only allow resources from the same origin (with a few exceptions)