This is an automated email from the ASF dual-hosted git repository.
xiangfu pushed a commit to branch new-static-prod
in repository https://gitbox.apache.org/repos/asf/pinot-site.git
The following commit(s) were added to refs/heads/new-static-prod by this push:
new afb2e656 Update .htaccess
afb2e656 is described below
commit afb2e6561ec9056e56f2158863c4ae426b6a3cb9
Author: Xiang Fu <[email protected]>
AuthorDate: Sat Jan 3 18:34:35 2026 -0800
Update .htaccess
---
.htaccess | 14 ++------------
1 file changed, 2 insertions(+), 12 deletions(-)
diff --git a/.htaccess b/.htaccess
index 7d91502d..f1586209 100644
--- a/.htaccess
+++ b/.htaccess
@@ -1,12 +1,2 @@
-<IfModule mod_headers.c>
- Header unset Content-Security-Policy
- Header always set Content-Security-Policy "default-src 'self'; \
-script-src 'self' 'unsafe-eval' 'unsafe-inline' giscus.app analytics.umami.is
analytics.apache.org www.youtube.com; \
-script-src-elem 'self' 'unsafe-eval' 'unsafe-inline' giscus.app
analytics.umami.is analytics.apache.org www.youtube.com; \
-style-src 'self' 'unsafe-inline'; \
-img-src * blob: data:; \
-media-src *.s3.amazonaws.com; \
-connect-src *; \
-font-src 'self'; \
-frame-src www.youtube.com youtube.com giscus.app youtu.be;"
-</IfModule>
+# CSP permissions for pinot.apache.org - Matomo analytics. Approved by VP Data
Privacy.
+SetEnv CSP_PROJECT_DOMAINS "https://analytics.apache.org/";
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
