X-Git-Url: https://git.openstreetmap.org/rails.git/blobdiff_plain/af1397436f0a1fd1c8170e3935a13c3ec51ea948..29036cdfaf14a37f42cee3026566ffca0bc7a963:/config/example.application.yml

diff --git a/config/example.application.yml b/config/example.application.yml
index 22e5c4c9e..b6884825b 100644
--- a/config/example.application.yml
+++ b/config/example.application.yml
@@ -97,11 +97,11 @@ defaults: &defaults
     # Blacklist here
     - ".*\\.here\\.com[/:].*"
   # URL of Overpass instance to use for feature queries
-  overpass_url: "//overpass-api.de/api/interpreter"
+  overpass_url: "https://overpass-api.de/api/interpreter"
   # Routing endpoints
-  graphhopper_url: "//graphhopper.com/api/1/route"
-  mapquest_directions_url: "//open.mapquestapi.com/directions/v2/route"
-  osrm_url: "//router.project-osrm.org/route/v1/driving/"
+  graphhopper_url: "https://graphhopper.com/api/1/route"
+  mapquest_directions_url: "https://open.mapquestapi.com/directions/v2/route"
+  osrm_url: "https://router.project-osrm.org/route/v1/driving/"
   # External authentication credentials
   #google_auth_id: ""
   #google_auth_secret: ""
@@ -120,6 +120,8 @@ defaults: &defaults
   #thunderforest_key: ""
   # Key for generating TOTP tokens
   #totp_key: ""
+  # Enforce Content-Security-Policy
+  csp_enforce: false
   # URL for reporting Content-Security-Policy violations
   #csp_report_url: ""