From f0c787bbb75e0d28915124347a0e0feeb5fc40ec Mon Sep 17 00:00:00 2001
From: Peter Palfrader <peter@palfrader.org>
Date: Wed, 8 Mar 2017 18:15:59 +0100
Subject: [PATCH] amended policy

---
 .../templates/static-mirroring/vhost/static-vhosts-simple.erb   | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/modules/roles/templates/static-mirroring/vhost/static-vhosts-simple.erb b/modules/roles/templates/static-mirroring/vhost/static-vhosts-simple.erb
index a84e17439..3cc240028 100644
--- a/modules/roles/templates/static-mirroring/vhost/static-vhosts-simple.erb
+++ b/modules/roles/templates/static-mirroring/vhost/static-vhosts-simple.erb
@@ -148,7 +148,7 @@
 	# Versioned request
 	RewriteRule ^/source/([a-z0-9-]+)/([a-zA-Z0-9.+:~-]+)$ /${source-map:$1/$2} [L,R,NE]
 
-	Header always set Content-Security-Policy "default-src 'self';"
+	Header always set Content-Security-Policy "default-src 'self'; media-src 'none'; object-src 'none';"
 </Macro>
 
 <%=
-- 
2.20.1