Greg/SportAttendanceSheet
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Repair styles and reports

Browse Source
This commit is contained in:
Greg 2025-05-17 14:22:14 +02:00
parent 435fbd4486
commit b612b23340
1 changed files with 19 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

20
app.py
View File

@ -15,7 +15,25 @@ app.config['SECRET_KEY'] = os.environ.get('SECRET_KEY', 'change-this-secret-key'
csrf = CSRFProtect(app) csrf = CSRFProtect(app)
# Security Headers # Security Headers
Talisman(app) csp = {
'default-src': [
"'self'"
],
'script-src': [
"'self'",
'https://cdn.jsdelivr.net/npm/chart.js',
"'unsafe-inline'"
],
'style-src': [
"'self'",
"'unsafe-inline'"
],
'img-src': [
"'self'",
'data:'
]
}
Talisman(app, content_security_policy=csp)
# Logging Configuration # Logging Configuration
logging.basicConfig(level=logging.INFO, format='%(asctime)s %(levelname)s %(message)s') logging.basicConfig(level=logging.INFO, format='%(asctime)s %(levelname)s %(message)s')