Index: openacs-4/packages/dotlrn-bootstrap3-theme/resources/masters/dotlrn-master.tcl =================================================================== RCS file: /usr/local/cvsroot/openacs-4/packages/dotlrn-bootstrap3-theme/resources/masters/dotlrn-master.tcl,v diff -u -r1.1 -r1.2 --- openacs-4/packages/dotlrn-bootstrap3-theme/resources/masters/dotlrn-master.tcl 20 Feb 2017 09:49:14 -0000 1.1 +++ openacs-4/packages/dotlrn-bootstrap3-theme/resources/masters/dotlrn-master.tcl 7 Aug 2017 23:48:09 -0000 1.2 @@ -138,5 +138,11 @@ # User messages util_get_user_messages -multirow user_messages +# +# Security setup +# set csrf [security::csrf::new] +security::csp::require style-src maxcdn.bootstrapcdn.com +security::csp::require script-src maxcdn.bootstrapcdn.com +security::csp::require font-src maxcdn.bootstrapcdn.com