Open
Cached
·
just now
8
directives
Content-Security-Policy
Content-Security-Policy: base-uri 'self' https://support.zammad.com; default-src 'self' ws: wss: https://images.zammad.com; font-src 'self' data:; img-src * data: blob:; object-src 'none'; script-src 'self' 'unsafe-eval' 'nonce-4j4b4x6sbWQhIVbM/re17A=='; style-src 'self' 'unsafe-inline'; frame-src www.youtube.com player.vimeo.com
base-uri
Keyword
—
'self'
default-src
Keyword
—
'self'
default-src
Scheme
—
ws:
default-src
Scheme
—
wss:
font-src
Keyword
—
'self'
font-src
Scheme
—
data:
img-src
Host
—
*
img-src
Scheme
—
data:
img-src
Scheme
—
blob:
object-src
Keyword
—
'none'
script-src
Keyword
—
'self'
script-src
Keyword
—
'unsafe-eval'
script-src
Nonce
—
'nonce-4j4b4x6sbWQhIVbM/re17A=='
style-src
Keyword
—
'self'
style-src
Keyword
—
'unsafe-inline'
Content-Security-Policy-Report-Only
No report-only CSP headers found.