From 08db98c945f32c4ac76ef9575e849fa81e912aff Mon Sep 17 00:00:00 2001
From: Eric Theise <erictheise@gmail.com>
Date: Wed, 4 Dec 2024 16:03:36 -0800
Subject: [PATCH] Fixes for Content Security Policy in dev

---
 config/initializers/content_security_policy.rb | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/config/initializers/content_security_policy.rb b/config/initializers/content_security_policy.rb
index b234e8902b..de9dc93c44 100644
--- a/config/initializers/content_security_policy.rb
+++ b/config/initializers/content_security_policy.rb
@@ -5,7 +5,7 @@
 # https://guides.rubyonrails.org/security.html#content-security-policy-header
 
 Rails.application.configure do
-  connect_src = [:self, "openhistoricalmap.github.io"]
+  connect_src = [:self, "*.openhistoricalmap.org", "openhistoricalmap.github.io"]
   img_src = [:self, :data, "www.gravatar.com", "*.wp.com", "tile.openstreetmap.org", "gps.tile.openstreetmap.org", "*.tile.thunderforest.com", "tile.tracestrack.com", "*.openstreetmap.fr"]
   script_src = [:self, "openhistoricalmap.github.io"]
   style_src = [:self, "openhistoricalmap.github.io"]