From a2d6d7a92c3ee6deee037b0e0f7aae218b783d97 Mon Sep 17 00:00:00 2001
From: James Cole <james@firefly-iii.org>
Date: Sat, 12 Aug 2023 18:09:23 +0200
Subject: [PATCH] Add nonce.

---
 app/Http/Middleware/SecureHeaders.php | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/app/Http/Middleware/SecureHeaders.php b/app/Http/Middleware/SecureHeaders.php
index b2c5040815..cf8021ba71 100644
--- a/app/Http/Middleware/SecureHeaders.php
+++ b/app/Http/Middleware/SecureHeaders.php
@@ -26,6 +26,7 @@ namespace FireflyIII\Http\Middleware;
 use Closure;
 use Exception;
 use Illuminate\Http\Request;
+use Illuminate\Support\Facades\Vite;
 
 /**
  *
@@ -46,6 +47,7 @@ class SecureHeaders
     {
         // generate and share nonce.
         $nonce = base64_encode(random_bytes(16));
+        Vite::useCspNonce($nonce);
         app('view')->share('JS_NONCE', $nonce);
 
         $response          = $next($request);