Gitter chat fix

Added https://*.gitter.im to 'frameSrc' CSP
2015-03-10 17:42:15 -05:00
parent 5c0764c022
commit 71456b7544
1 changed files with 1 additions and 0 deletions
--- a/app.js
+++ b/app.js
@ -183,6 +183,7 @@ app.use(helmet.contentSecurityPolicy({
    ].concat(trusted),
    frameSrc: [
        '*.gitter.im',
+        '*.gitter.im https:',
        '*.vimeo.com',
        '*.twitter.com',
        '*.rafflecopter.com',