From 3f9714f6d06ed33baef92f8d8b3d3f0b31433349 Mon Sep 17 00:00:00 2001
From: f <f@sutty.nl>
Date: Mon, 25 Mar 2024 15:30:44 -0300
Subject: [PATCH] =?UTF-8?q?fix:=20permitir=20cargar=20blobs=20en=20previsu?=
 =?UTF-8?q?alizaci=C3=B3n=20de=20videos=20y=20audios?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 config/initializers/content_security_policy.rb | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/config/initializers/content_security_policy.rb b/config/initializers/content_security_policy.rb
index 91d287e0..c07c7751 100644
--- a/config/initializers/content_security_policy.rb
+++ b/config/initializers/content_security_policy.rb
@@ -7,7 +7,7 @@
 # https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Content-Security-Policy
 
 Rails.application.config.content_security_policy do |policy|
-  policy.default_src :self
+  policy.default_src :self, :blob
   # XXX: Varios scripts generan estilos en línea
   policy.style_src   :self, :unsafe_inline, :https
   # Repetimos la default para poder saber cuál es la política en falta