From e5f03fe1356dca679b6e19c0dc02136f8f78936a Mon Sep 17 00:00:00 2001
From: Literallie <git@l1t.li>
Date: Sat, 21 Oct 2017 01:25:30 +0200
Subject: [PATCH] Add dirty workaround for speakers view inline script

---
 app.js | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/app.js b/app.js
index c382cc3..cdabc7d 100644
--- a/app.js
+++ b/app.js
@@ -173,6 +173,10 @@ if (config.csp.enable) {
   }
   if (directives.scriptSrc.indexOf('\'unsafe-inline\'') === -1) {
     directives.scriptSrc.push(getCspNonce)
+    // TODO: This is the SHA-256 hash of the inline script in
+    // build/reveal.js/plugins/notes/notes.html . Any cleaner
+    // solution appreciated.
+    directives.scriptSrc.push('\'sha256-EtvSSxRwce5cLeFBZbvZvDrTiRoyoXbWWwvEVciM5Ag=\'')
   }
   directives.connectSrc.push(getCspWebSocketUrl)
   if (config.csp.upgradeInsecureRequests === 'auto') {