From db07a0598dd31d5a79554129fe40ef332ab9263e Mon Sep 17 00:00:00 2001
From: "J.-S. Caux" <J.S.Caux@uva.nl>
Date: Sat, 4 May 2019 21:43:14 +0200
Subject: [PATCH] Correct: eval: in SCRIPT

---
 SciPost_v1/settings/base.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/SciPost_v1/settings/base.py b/SciPost_v1/settings/base.py
index 343f6b5f7..c9b70414d 100644
--- a/SciPost_v1/settings/base.py
+++ b/SciPost_v1/settings/base.py
@@ -200,7 +200,7 @@ CSP_FONT_SRC = ("'self'", 'data:', 'fonts.gstatic.com', 'cdnjs.cloudflare.com',
 CSP_FRAME_SRC = ('www.google.com', 'player.vimeo.com')
 CSP_IMG_SRC = ("'self'", 'data:', 'ajax.googleapis.com', 'assets.crossref.org',
                'licensebuttons.net', 'crossmark-cdn.crossref.org')
-CSP_SCRIPT_SRC = ("'self'", 'data:', "'unsafe-inline'", 'ajax.googleapis.com',
+CSP_SCRIPT_SRC = ("'self'", 'eval:', "'unsafe-inline'", 'ajax.googleapis.com',
                   'cdnjs.cloudflare.com', 'crossmark-cdn.crossref.org',
                   'www.recaptcha.net', 'www.gstatic.com',
                   'code.jquery.com')
-- 
GitLab