search

Wolven531 / simple-cra-app

An app created w/ CRA to consume and display Riot API League data
https://simple-cra-staging.herokuapp.com
MIT License
4 stars 1 forks source link

Enable CSP (frontend) #11

Open Wolven531 opened 3 years ago

Wolven531 commented 3 years ago

Enable Content Security Policy (CSP) on the frontend, to help protect against man-in-the-middle attacks and cross site injection.

Note - this will involve an update to the .env file

jhechtf commented 3 years ago

I'll look into how to set CSP with Heroku.