default-src 'self' https://*.heg-cp.com https://www.google-analytics.com https://*.optimizely.com; font-src 'self' data:; frame-src *.vimeocdn.com https://www.google.com https://*.facebook.com https://*.optimizely.com www.youtube.com 'self' *.doubleclick.net https://*.facebook.net *.vimeo.com; img-src https://i.ytimg.com data: https://www.google.com https://www.facebook.com https://*.leadinspector.de https://*.multiscreensite.com 'self' https://www.google.de https://www.hosteurope.com/ 'unsafe-inline' https://www.google.com.ua https://*.g.doubleclick.net https://bat.bing.com https://www.google-analytics.com https://t.co; object-src 'self'; script-src https://*.optimizely.com https://www.gstatic.com 'self' https://*.doubleclick.net 'unsafe-eval' https://www.google-analytics.com tags.tiqcdn.com https://static.ads-twitter.com www.googleadservices.com ajax.googleapis.com www.dwin1.com https://*.ampproject.org 'unsafe-inline' https://bat.bing.com https://connect.facebook.net https://js.leadinspector.de http://*.optimizely.com http://js.leadinspector.de https://static-artifact.heg-cp.com https://www.google.com https://*.hosteurope.de https://*.twitter.com https://cdn.polyfill.io; style-src 'self' 'unsafe-inline' https://*.hosteurope.de; |