From dceec40c20489a17f7a199a69a18a2d7ec62a436 Mon Sep 17 00:00:00 2001
From: Kevin Reiss <kevin.reiss@gmail.com>
Date: Tue, 11 Feb 2025 08:41:08 -0600
Subject: [PATCH] Tag manager needs additional CSP adjustments. (#456)

---
 index.html | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/index.html b/index.html
index 203966b..7437f1d 100644
--- a/index.html
+++ b/index.html
@@ -16,8 +16,8 @@
       http-equiv="Content-Security-Policy" 
       content="
         default-src 'none'; 
-        style-src 'self' 'unsafe-inline' https://use.typekit.net https://p.typekit.net;
-        script-src 'self' https://www.googletagmanager.com/gtm.js 'unsafe-eval'; 
+        style-src 'self' 'unsafe-inline' https://use.typekit.net https://p.typekit.net https://tagmanager.google.com/ https://www.googletagmanager.com/;
+        script-src 'self' https://tagmanager.google.com/ https://www.googletagmanager.com/ 'unsafe-eval' 'unsafe-inline';         
         connect-src 'self' localhost:* https://allsearch-api.princeton.edu https://allsearch-api-staging.princeton.edu https://bibdata.princeton.edu https://bibdata-staging.lib.princeton.edu https://api.honeybadger.io https://www.google-analytics.com; 
         font-src 'self' https://use.typekit.net; 
         base-uri 'none';