From 25f10ea8974cb0b42cb3c8d495c2e8d3be73a54e Mon Sep 17 00:00:00 2001
From: Hubert Deng <hubert.deng@sentry.io>
Date: Tue, 9 May 2023 22:43:13 -0700
Subject: [PATCH] Add settings for enabling CSP to config file (#2134)

* add enabling csp to config file

* comment out report URI to avoid breaking self-hosted
---
 sentry/sentry.conf.example.py | 13 +++++++++++++
 1 file changed, 13 insertions(+)

diff --git a/sentry/sentry.conf.example.py b/sentry/sentry.conf.example.py
index 99f4552..f399e6f 100644
--- a/sentry/sentry.conf.example.py
+++ b/sentry/sentry.conf.example.py
@@ -306,3 +306,16 @@ OPENAI_API_KEY = env("OPENAI_API_KEY", "")
 
 if OPENAI_API_KEY:
   SENTRY_FEATURES["organizations:open-ai-suggestion"] = True
+
+##############################################
+# Content Security Policy settings
+##############################################
+
+if "csp.middleware.CSPMiddleware" not in MIDDLEWARE:
+    MIDDLEWARE = ("csp.middleware.CSPMiddleware",) + MIDDLEWARE
+# CSP_REPORT_URI = "https://{your-sentry-installation}/api/{csp-project}/security/?sentry_key={sentry-key}"
+CSP_REPORT_ONLY = True
+
+# optional extra permissions
+# https://django-csp.readthedocs.io/en/latest/configuration.html
+# CSP_SCRIPT_SRC += ["example.com"]