that’s done within your app, by sending an HTTP header with the response. see this guide
although can you describe how you came to the conclusion that you needed to change your CSP? it you weren’t aware of the concept of CSP, then you possibly wouldn’t have had a header being sent, which would mean your app would run unconstrained. maybe you’re using a general security plugin that sets a CSP header by default?
This topic was automatically closed 180 days after the last reply. New replies are no longer allowed.