From 667505c5790acee5b693f277edfb55a4b4b22e46 Mon Sep 17 00:00:00 2001
From: Tim Raderschad <tim.raderschad@gmail.com>
Date: Wed, 7 Aug 2024 18:52:02 +0200
Subject: [PATCH] fix(web): security headers

---
 apps/web/next.config.mjs | 7 -------
 1 file changed, 7 deletions(-)

diff --git a/apps/web/next.config.mjs b/apps/web/next.config.mjs
index 8b4517b8..2a8e79e9 100644
--- a/apps/web/next.config.mjs
+++ b/apps/web/next.config.mjs
@@ -31,14 +31,7 @@ const withBundleAnalyzer = bundleAnalzyer({
 !process.env.SKIP_ENV_VALIDATION && (await import("./src/env/server.mjs"));
 
 const cspHeader = `
-    default-src 'self';
-    style-src 'self' 'unsafe-inline';
-    font-src 'self';
-    object-src 'none';
-    base-uri 'self';
-    form-action 'self';
     frame-ancestors 'none';
-    upgrade-insecure-requests;
 `;
 
 /** @type {import("next").NextConfig} */