From 60de619080b26c8ca59dd24af922c872fed13f45 Mon Sep 17 00:00:00 2001
From: Jeroen De Meerleer <me@jeroened.be>
Date: Wed, 7 Feb 2024 17:22:05 +0100
Subject: [PATCH] Add 'connect-src' directive to Content Security Policy

This commit adds the 'connect-src' directive to the Content Security Policy in the nelmio_security.yaml file. This allows connections only to the same origin ('self').
---
 config/packages/nelmio_security.yaml | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/config/packages/nelmio_security.yaml b/config/packages/nelmio_security.yaml
index 9e8757c..66fc8ad 100644
--- a/config/packages/nelmio_security.yaml
+++ b/config/packages/nelmio_security.yaml
@@ -46,6 +46,8 @@ nelmio_security:
                 - 'self'
             font-src:
                 - 'self'
+            connect-src:
+                - 'self'
             form-action:
                 - 'none'
             frame-ancestors: