Content-Security-Policy: default-src 'self' *.apple.com https://fonts.gstatic.com https://use.typekit.net; img-src 'self' data: *.apple.com https://assets.c2-circle.com https://uk.selectonline.com https://www.jumpplus.com https://res.cloudinary.com https://cdn.shopify.com https://www.c2-circle.com https://storage.googleapis.com https://applecmscoehdwsubdev.112.2o7.net https://applecmscoehardwaresubscriptiondev.112.2o7.net https://assets.c2-volta.com https://cdn.shopify.com https://www.implement-it.de https://api.xs2a.com https://www.c2-circle.com https://im.cyberport.de https://admin.target.eboxx.at https://images.ctfassets.net https://s3-ap-southeast-2.amazonaws.com; style-src 'self' 'nonce-b37a9c5fcbbccc24ce243c4c84cfd4a5' 'sha256-YJCd76iGxjnt3kjNR+Ry5qnM/RfgnIA0I4+C6r/gc+4=' *.apple.com https://api.xs2a.com https://odoo.jumpplus.com https://etrust-sandbox.electronicid.eu https://fonts.googleapis.com https://p.typekit.net https://www.jumpplus.com https://jumpplus.com https://api.xs2a.com; script-src 'self' 'nonce-b37a9c5fcbbccc24ce243c4c84cfd4a5' *.apple.com https://nextjs.org https://reactjs.org https://js.stripe.com https://applecmscoehardwaresubscriptiondev.112.2o7.net https://cdn.apple-mapkit.com https://api.apple-mapkit.com https://gsp10-ssl.ls.apple.com https://api.liftforward-sandbox.com https://etrust-sandbox.electronicid.eu https://unpkg.com https://api.xs2a.com https://m.stripe.com https://r.stripe.com https://js.stripe.com https://www.gstatic.com https://gstatic.com https://www.google.com; connect-src 'self' https://cdn.apple-mapkit.com https://api.apple-mapkit.com https://gsp10.apple-mapkit.com https://gsp10-ssl.ls.apple.com https://applecmscoehdwsubdev.112.2o7.net https://api.xs2a.com; frame-src 'self' https://api.liftforward-sandbox.com https://js.stripe.com https://www.google.com; child-src 'self' https://api.liftforward-sandbox.com https://js.stripe.com; worker-src 'self' https://channelsubscription.com; base-uri 'self'