From 024c325bab939df62e6f9add9c0c769221e7cfad Mon Sep 17 00:00:00 2001
From: Hubert Van De Walle <hubv@protonmail.com>
Date: Tue, 5 May 2020 22:08:57 +0200
Subject: [PATCH] Don't need CSP for remote fonts anymore

---
 caddy/Caddyfile      | 2 +-
 caddy/Caddyfile.prod | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/caddy/Caddyfile b/caddy/Caddyfile
index 09880e7..d5bddc2 100644
--- a/caddy/Caddyfile
+++ b/caddy/Caddyfile
@@ -4,7 +4,7 @@
         -Date
 
         Strict-Transport-Security "max-age=31536000; includeSubDomains"
-        Content-Security-Policy "default-src 'self' 'unsafe-inline' https://fonts.gstatic.com https://fonts.googleapis.com https://cdn.jsdelivr.net;"
+        Content-Security-Policy "default-src 'self' 'unsafe-inline';"
         Feature-Policy "geolocation none;midi none;notifications none;push none;sync-xhr none;microphone none;camera none;magnetometer none;gyroscope none;speaker self;vibrate none;fullscreen self;payment none;"
         X-Content-Type-Options "nosniff"
         X-Frame-Options "DENY"
diff --git a/caddy/Caddyfile.prod b/caddy/Caddyfile.prod
index 5001bae..be4dec6 100644
--- a/caddy/Caddyfile.prod
+++ b/caddy/Caddyfile.prod
@@ -4,7 +4,7 @@
         -Date
 
         Strict-Transport-Security "max-age=31536000; includeSubDomains"
-        Content-Security-Policy "default-src 'self' 'unsafe-inline' https://fonts.gstatic.com https://fonts.googleapis.com https://cdn.jsdelivr.net;"
+        Content-Security-Policy "default-src 'self' 'unsafe-inline';"
         Feature-Policy "geolocation none;midi none;notifications none;push none;sync-xhr none;microphone none;camera none;magnetometer none;gyroscope none;speaker self;vibrate none;fullscreen self;payment none;"
         X-Content-Type-Options "nosniff"
         X-Frame-Options "DENY"