From 11adec7e71dc62952a573a2201e7284c440f396b Mon Sep 17 00:00:00 2001
From: Ed Tanous <ed.tanous@intel.com>
Date: Wed, 19 Dec 2018 17:59:28 -0800
Subject: webui: enable ngCSP

ngCSP allows angular to avoid using inline style and unsafe eval
mechanisms.  Enabling this will allow us to update to a more stringent
content-security policy.

for more details, see documentation here:
https://docs.angularjs.org/api/ng/directive/ngCsp

Tested by:
Launching the GUI, and saw no ill effects.

Change-Id: I4db732e997c2901d1fe57eee99607007b5e3afec
Signed-off-by: Ed Tanous <ed.tanous@intel.com>
---
 app/index.html | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

(limited to 'app/index.html')

diff --git a/app/index.html b/app/index.html
index de38fb7..62ddfc5 100644
--- a/app/index.html
+++ b/app/index.html
@@ -1,5 +1,5 @@
 <!doctype html>
-<html ng-app="app" lang="en">
+<html ng-app="app" ng-csp lang="en">
 
 <head>
     <meta charset="UTF-8">
-- 
cgit v1.2.1