From 7beb500fb4c7ebd004a6c24f54be2989964e8e0e Mon Sep 17 00:00:00 2001
From: Max Kostikov <max@kostikov.co>
Date: Thu, 4 Mar 2021 08:36:20 +0000
Subject: Check if custom CSP is set

---
 boot.php | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

(limited to 'boot.php')

diff --git a/boot.php b/boot.php
index 2df98a19d..70610e1c7 100644
--- a/boot.php
+++ b/boot.php
@@ -2422,7 +2422,7 @@ function construct_page() {
 	if(App::get_scheme() === 'https' && App::$config['system']['transport_security_header'])
 		header("Strict-Transport-Security: max-age=31536000");
 
-	if(App::$config['system']['content_security_policy']) {
+	if(isset(App::$config['system']['content_security_policy'])) {
 		$cspsettings = [
 			'script-src' => [ "'self'", "'unsafe-inline'", "'unsafe-eval'" ],
 			'style-src'  => [ "'self'", "'unsafe-inline'" ],
-- 
cgit v1.2.3