asteroid-cookies/conf/application.conf

17 lines
536 B
Text
Raw Normal View History

2024-09-09 01:03:41 +00:00
play.filters.hosts {
allowed = ["."]
}
play.filters.enabled += play.filters.headers.SecurityHeadersFilter
play.filters.headers {
contentSecurityPolicy = "default-src 'self'; script-src 'self' 'unsafe-inline'; style-src 'self' 'unsafe-inline'; frame-ancestors 'self' https://jevalide.ca"
}
play.filters.enabled += "play.filters.cors.CORSFilter"
play.filters.cors {
allowedOrigins = null // Allow all origins
allowedHttpMethods = ["GET", "POST", "PUT", "DELETE", "OPTIONS"]
allowedHttpHeaders = ["Accept", "Content-Type"]
}