From fd6179d7c83eb04b7d4ed30a59f4da0961f26759 Mon Sep 17 00:00:00 2001
From: Matt N <github@matthew.noorenberghe.com>
Date: Fri, 25 Jan 2019 05:34:29 -0800
Subject: [PATCH] Enforce CSP on many more views (#2480)

---
 web/includes/functions.php | 8 ++++++++
 1 file changed, 8 insertions(+)

diff --git a/web/includes/functions.php b/web/includes/functions.php
index c5c17e17d..05761ddeb 100644
--- a/web/includes/functions.php
+++ b/web/includes/functions.php
@@ -51,12 +51,20 @@ function CSPHeaders($view, $nonce) {
     case 'blank':
     case 'console':
     case 'controlcap':
+    case 'cycle':
+    case 'donate':
+    case 'error':
     case 'function':
     case 'log':
     case 'logout':
+    case 'optionhelp':
     case 'options':
     case 'plugin':
+    case 'postlogin':
     case 'privacy':
+    case 'server':
+    case 'state':
+    case 'status':
     case 'storage':
     case 'version': {
       // Enforce script-src on pages where inline scripts and event handlers have been fixed.