webui: enable ngCSP
ngCSP allows angular to avoid using inline style and unsafe eval
mechanisms. Enabling this will allow us to update to a more stringent
content-security policy.
for more details, see documentation here:
https://docs.angularjs.org/api/ng/directive/ngCsp
Tested by:
Launching the GUI, and saw no ill effects.
Change-Id: I4db732e997c2901d1fe57eee99607007b5e3afec
Signed-off-by: Ed Tanous <ed.tanous@intel.com>
diff --git a/app/index.html b/app/index.html
index de38fb7..62ddfc5 100644
--- a/app/index.html
+++ b/app/index.html
@@ -1,5 +1,5 @@
<!doctype html>
-<html ng-app="app" lang="en">
+<html ng-app="app" ng-csp lang="en">
<head>
<meta charset="UTF-8">