﻿<?xml version="1.0" encoding="utf-8"?>
<!--
  For more information on how to configure your ASP.NET application, please visit
  http://go.microsoft.com/fwlink/?LinkId=169433
  -->
<configuration>
  <system.web>
    <compilation debug="true" targetFramework="4.5" />
    <httpRuntime targetFramework="4.5" />
  </system.web>
  <system.webServer>
    <httpProtocol>
      <customHeaders>
        <add name="Content-Security-Policy" value="default-src 'self'; connect-src https://localhost:* wss://localhost:* http://localhost:* ws://localhost:* https://127.0.0.1:* wss://127.0.0.1:* http://127.0.0.1:* ws://127.0.0.1:* 'self'; img-src data: 'self'" />
        <add name="X-Content-Security-Policy" value="default-src 'self'; connect-src https://localhost:* wss://localhost:* http://localhost:* ws://localhost:* https://127.0.0.1:* wss://127.0.0.1:* http://127.0.0.1:* ws://127.0.0.1:* 'self'; img-src data: 'self'" />
      </customHeaders>
    </httpProtocol>
  </system.webServer>
</configuration>