Open
Cached
·
just now
10
directives
Content-Security-Policy
Content-Security-Policy: default-src 'self' *.webinfinity.com ; style-src 'self' blob: 'unsafe-inline' *.webinfinity.com static.filestackapi.com static-cdn.kloudless.com www.google.com fonts.googleapis.com ajax.googleapis.com www.gstatic.com ; base-uri 'self' ; img-src * 'self' data: blob: ; script-src 'self' blob: 'unsafe-eval' 'nonce-MV1DX4BSpYP1udyF/Qcz2A==' *.webinfinity.com www.google.com cdn.embed.ly static.filestackapi.com static-cdn.kloudless.com www.gstatic.com ; connect-src 'self' *.webinfinity.com wss://*.webinfinity.com *.filestackapi.com *.filestackcontent.com *.kloudless.com *.amazonaws.com ; font-src 'self' data: *.webinfinity.com fonts.gstatic.com ; frame-src * 'self' data: blob: ; form-action * 'self' ; frame-ancestors 'self' https://eu6.salesforce.com https://staging.connectwisedev.com https://my.vartopia.com https://stage.vartopia.com https://goprm-dev-ed.my.salesforce.com
default-src
Keyword
—
'self'
style-src
Keyword
—
'self'
style-src
Scheme
—
blob:
style-src
Keyword
—
'unsafe-inline'
style-src
Host
—
base-uri
Keyword
—
'self'
img-src
Host
—
*
img-src
Keyword
—
'self'
img-src
Scheme
—
data:
img-src
Scheme
—
blob:
script-src
Keyword
—
'self'
script-src
Scheme
—
blob:
script-src
Keyword
—
'unsafe-eval'
script-src
Nonce
—
'nonce-MV1DX4BSpYP1udyF/Qcz2A=='
script-src
Host
—
connect-src
Keyword
—
'self'
connect-src
Host
—
connect-src
Host
—
font-src
Keyword
—
'self'
font-src
Scheme
—
data:
frame-src
Host
—
*
frame-src
Keyword
—
'self'
frame-src
Scheme
—
data:
frame-src
Scheme
—
blob:
form-action
Host
—
*
form-action
Keyword
—
'self'
frame-ancestors
Keyword
—
'self'
Content-Security-Policy-Report-Only
No report-only CSP headers found.