From 4fec7c30430dcb57a6a9f1eb6291125c5e0e0a34 Mon Sep 17 00:00:00 2001
From: labkey-nicka <nickk@labkey.com>
Date: Mon, 5 Feb 2024 16:27:06 -0800
Subject: [PATCH] Suppress CSP reporting for dev "hot reload"

---
 server/configs/application.properties | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/server/configs/application.properties b/server/configs/application.properties
index b3762ab065..4b29f0db7b 100644
--- a/server/configs/application.properties
+++ b/server/configs/application.properties
@@ -176,11 +176,11 @@ spring.main.banner-mode=off
 # Default CSP for TeamCity and dev deployments
 #setupTask#csp.report=\
 #setupTask#    default-src 'self' https: http: ;\
-#setupTask#    connect-src 'self' ${LABKEY.ALLOWED.CONNECTIONS} ;\
+#setupTask#    connect-src 'self' localhost:* ws: ${LABKEY.ALLOWED.CONNECTIONS} ;\
 #setupTask#    object-src 'none' ;\
 #setupTask#    style-src 'self' https: 'unsafe-inline' ;\
 #setupTask#    img-src 'self' https: data: ;\
-#setupTask#    font-src 'self' https: data: ;\
+#setupTask#    font-src 'self' http: https: data: ;\
 #setupTask#    script-src 'unsafe-eval' 'strict-dynamic' 'nonce-${REQUEST.SCRIPT.NONCE}' ;\
 #setupTask#    base-uri 'self' ;\
 #setupTask#    frame-ancestors 'self' ;\