fix(proxy): add data: to font-src CSP to allow bundled KaTeX fonts

The bundled Web UI CSS (from owncloud/web) inlines the KaTeX_Size3 font as a base64 data:font/woff2 URI. The default CSP sets font-src to 'self' only, which blocks these data URIs and produces a console error on every page load: Loading the font 'data:font/woff2;base64,...' violates the following Content Security Policy directive: "font-src 'self'". Add 'data:' to font-src, matching the existing pattern where img-src already permits data: URIs. Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
2026-04-25 17:25:21 +02:00 · 2026-02-28 13:04:19 -05:00
parent 4fba74c1f7
commit ece1043ca2
1 changed files with 1 additions and 0 deletions
--- a/services/proxy/pkg/config/csp.yaml
+++ b/services/proxy/pkg/config/csp.yaml
@@ -9,6 +9,7 @@ directives:
    - '''none'''
  font-src:
    - '''self'''
+    - 'data:'
  frame-ancestors:
    - '''self'''
  frame-src: