From 991b4635d08477f7464419bc154dcc0cf354e38f Mon Sep 17 00:00:00 2001
From: ewhal <ewhal@users.noreply.github.com>
Date: Sun, 27 Aug 2017 13:53:06 +1000
Subject: [PATCH] fix base64 encoded imgs (#1407)

---
 controllers/middlewares/middlewares.go | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/controllers/middlewares/middlewares.go b/controllers/middlewares/middlewares.go
index 1d5e334c..19359fbc 100644
--- a/controllers/middlewares/middlewares.go
+++ b/controllers/middlewares/middlewares.go
@@ -64,7 +64,7 @@ func ScopesRequired(scopes ...string) gin.HandlerFunc {
 // CSP set Content Security Policy http header
 func CSP() gin.HandlerFunc {
 	return func(c *gin.Context) {
-		c.Header("Content-Security-Policy", "default-src 'self'; img-src *; media-src *; style-src 'self' 'unsafe-inline'; script-src 'self' 'unsafe-inline'")
+		c.Header("Content-Security-Policy", "default-src 'self'; img-src * data:; media-src *; style-src 'self' 'unsafe-inline'; script-src 'self' 'unsafe-inline'")
 		c.Next()
 	}
 }