From de872d4a983626936c8fa9a053b21e414523f7dd Mon Sep 17 00:00:00 2001
From: Matthew Wills <5505611+mdotwills@users.noreply.github.com>
Date: Fri, 17 Jan 2025 17:44:39 +1100
Subject: [PATCH] fix(): Allow http requests to be made from browser context

Raised in https://github.com/firecamp-dev/firecamp/issues/243

Previously, it was not possible to make a http request from the web client as
the request would be transparently upgraded to https. This was consequence of
an applied content security policy header with a directive to upgrade insecure
requests.

This change removes this CSP tag, meaning http requests are no longer forcibly
upgraded.
---
 templates/index.html | 4 ----
 1 file changed, 4 deletions(-)

diff --git a/templates/index.html b/templates/index.html
index 56d8fa50..074c7e84 100644
--- a/templates/index.html
+++ b/templates/index.html
@@ -37,10 +37,6 @@
     <meta name="twitter:image" content="https://firecamp.io/og.jpg" />
 
     <meta name="viewport" content="width=device-width, initial-scale=1" />
-    <meta
-      http-equiv="Content-Security-Policy"
-      content="upgrade-insecure-requests"
-    />
   </head>
   <body>
     <div id="root"></div>