From 8c6f8460a2dd7a27380f0e328eb8f4aeebbd9720 Mon Sep 17 00:00:00 2001
From: James Cole <thegrumpydictator@gmail.com>
Date: Thu, 9 Jan 2020 17:03:59 +0100
Subject: [PATCH] Be backwards compatible.

---
 app/Http/Middleware/SecureHeaders.php | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/app/Http/Middleware/SecureHeaders.php b/app/Http/Middleware/SecureHeaders.php
index bda07c06bd..f7a93e1781 100644
--- a/app/Http/Middleware/SecureHeaders.php
+++ b/app/Http/Middleware/SecureHeaders.php
@@ -59,7 +59,7 @@ class SecureHeaders
         $csp = [
             "default-src 'none'",
             "object-src 'self'",
-            sprintf("script-src 'nonce-%s' %s", $nonce, $google),
+            sprintf("script-src 'nonce-%s' unsafe-inline %s", $nonce, $google),
             "style-src 'self' 'unsafe-inline'",
             "base-uri 'self'",
             "font-src 'self' data:",