search

pe7er / hCaptcha

A simple CAPTCHA Plugin using the hCaptcha service to protect your Joomla site against SPAM
13 stars 7 forks source link

Content-Security-Policy header #26

Closed pe7er closed 3 years ago

pe7er commented 4 years ago

Content-Security-Policy header needs two values:

script-src: https://hcaptcha.com https://.hcaptcha.com
frame-src: https://.hcaptcha.com
conconnl commented 4 years ago

I found the official documentation: https://docs.hcaptcha.com/ Chapter: Content-Security-Policy Settings

Content: If you use CSP headers, please add the following to your configuration:

script-src should include https://hcaptcha.com https://*.hcaptcha.com frame-src should include https://hcaptcha.com https://*.hcaptcha.com style-src should include https://hcaptcha.com https://*.hcaptcha.com