diff options
author | Micah Lee <micah@micahflee.com> | 2022-01-16 15:49:33 -0800 |
---|---|---|
committer | Micah Lee <micah@micahflee.com> | 2022-01-16 15:49:33 -0800 |
commit | 9e99ad8b8d6f0eb0a2162191ec31a68e7c3acee5 (patch) | |
tree | 5a5215260866bd07adc60ead1ae0d1b6cd93174b /docs/source/features.rst | |
parent | 74711e7d7c7b825fc580c612530569195156794a (diff) | |
parent | b4e022149d677f9c2acd639e9dfa77bcc712b068 (diff) | |
download | onionshare-9e99ad8b8d6f0eb0a2162191ec31a68e7c3acee5.tar.gz onionshare-9e99ad8b8d6f0eb0a2162191ec31a68e7c3acee5.zip |
Merge branch 'develop' of github.com:onionshare/onionshare into ros-fixes
Diffstat (limited to 'docs/source/features.rst')
-rw-r--r-- | docs/source/features.rst | 5 |
1 files changed, 4 insertions, 1 deletions
diff --git a/docs/source/features.rst b/docs/source/features.rst index 497b0ede..3cb89ed7 100644 --- a/docs/source/features.rst +++ b/docs/source/features.rst @@ -118,7 +118,10 @@ Content Security Policy By default OnionShare helps secure your website by setting a strict `Content Security Policy <https://en.wikipedia.org/wiki/Content_Security_Policy>`_ header. However, this prevents third-party content from loading inside the web page. -If you want to load content from third-party websites, like assets or JavaScript libraries from CDNs, check the "Don't send Content Security Policy header (allows your website to use third-party resources)" box before starting the service. +If you want to load content from third-party websites, like assets or JavaScript libraries from CDNs, you have two options: + +- You can disable sending a Content Security Policy header by checking the "Don't send Content Security Policy header (allows your website to use third-party resources)" box before starting the service. +- You can send a custom Content Security Policy header. Tips for running a website service ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ |