From 2e5b0678cdfdeac3f3f4505807605dfc2f0ab56c Mon Sep 17 00:00:00 2001
From: Liam <byteslice@airmail.cc>
Date: Sun, 23 Jun 2024 11:52:20 -0400
Subject: [PATCH] Remove obsolete block-all-mixed-content

This was removed in all major browsers with no replacement.
See https://www.w3.org/TR/mixed-content/#strict-checking for details on the obsolescence.
---
 lib/philomena_web/plugs/content_security_policy_plug.ex | 3 +--
 1 file changed, 1 insertion(+), 2 deletions(-)

diff --git a/lib/philomena_web/plugs/content_security_policy_plug.ex b/lib/philomena_web/plugs/content_security_policy_plug.ex
index 210ff645..34cca2d6 100644
--- a/lib/philomena_web/plugs/content_security_policy_plug.ex
+++ b/lib/philomena_web/plugs/content_security_policy_plug.ex
@@ -34,8 +34,7 @@ defmodule PhilomenaWeb.ContentSecurityPolicyPlug do
         {:form_action, ["'self'"]},
         {:manifest_src, ["'self'"]},
         {:img_src, ["'self'", "blob:", "data:", cdn_uri, camo_uri]},
-        {:media_src, ["'self'", "blob:", "data:", cdn_uri, camo_uri]},
-        {:block_all_mixed_content, []}
+        {:media_src, ["'self'", "blob:", "data:", cdn_uri, camo_uri]}
       ]
 
       csp_value =