From 966f97737b25b4009f8fe48051770d4c28cd4735 Mon Sep 17 00:00:00 2001
From: colin <colin@nixc.us>
Date: Thu, 3 Jul 2025 18:34:48 -0400
Subject: [PATCH] Fix UI rendering by setting Cross-Origin-Embedder-Policy to
 unsafe-none for UI routes

---
 docker/ploughshares/app.py | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/docker/ploughshares/app.py b/docker/ploughshares/app.py
index ebc3a6e..6c3a3f9 100644
--- a/docker/ploughshares/app.py
+++ b/docker/ploughshares/app.py
@@ -165,6 +165,9 @@ def add_api_headers(response):
         # For UI routes, add additional security headers
         for header, value in additional_headers.items():
             response.headers[header] = value
+        
+        # Make sure Cross-Origin-Embedder-Policy doesn't block resources
+        response.headers['Cross-Origin-Embedder-Policy'] = 'unsafe-none'
     
     return response