deploying docs: fix(docs): more CSP tweaks (#27280) (apache/superset@0468c57629044a8f8fc33dcfeffb457b3a79b0d9)
diff --git a/.htaccess b/.htaccess
index 3e8582d..bc88d42 100644
--- a/.htaccess
+++ b/.htaccess
@@ -22,10 +22,4 @@
RewriteCond %{HTTP_HOST} ^superset.incubator.apache.org$ [NC]
RewriteRule ^(.*)$ https://superset.apache.org/$1 [R=301,L]
-Header set Content-Security-Policy "default-src data: blob: 'self' *.apache.org *.bugherd.com *.scarf.sh *.googleapis.com *.googletagmanager.com *.google-analytics.com 'unsafe-inline' 'unsafe-eval'; \
-frame-src *; \
-frame-ancestors 'self' *.preset.io *.google.com https://sidebar.bugherd.com https://unpkg.com; \
-form-action 'self'; \
-worker-src blob:; img-src 'self' blob: data: https:; \
-font-src 'self' https://fonts.gstatic.com; \
-object-src 'none'
+Header set Content-Security-Policy "default-src data: blob: 'self' *.apache.org *.bugherd.com *.scarf.sh *.googleapis.com *.googletagmanager.com *.google-analytics.com 'unsafe-inline' 'unsafe-eval'; frame-src *; frame-ancestors 'self' *.preset.io *.google.com https://sidebar.bugherd.com https://unpkg.com; form-action 'self'; worker-src blob:; img-src 'self' blob: data: https:; font-src 'self' https://fonts.gstatic.com; object-src 'none'"
