[Bug] Custom base64 logo won't work on subscription page due to CSP header

[steffen-4s1]

Describe the bug

On the subscription management page, the content security policy is set more strictly than on all other pages. As a result, your own html_logo img tag with a base64 source is not displayed there.

subscription management page:
content-security-policy default-src 'self'; frame-ancestors 'none'; img-src 'self' blob:

other pages:
content-security-policy default-src 'self'; frame-ancestors 'none'; img-src * data:

To Reproduce

1. Add img with base64 src for logo_html in config.php
2. 'logo_html' => '<img class="logo" src="data:image/png;base64, iVBOR..." alt="Logo" />'
3. Go to subscription management page
4. Logo could not load
5. Got to any other page e.g. label management
6. logo will be visible

Expected behavior

No response

FreshRSS version

1.27.1

System information

• Database version: SQLite
• PHP version: 8.2.29
• Installation type: Docker
• Web server type: Docker+Caddy
• Device: Computer
• OS: Linux
• Browser: Chrome

Additional context

Screenshot

[Inverle]

Fixed in #8253 testing welcome

[steffen-4s1]

With the current Docker image freshrss/freshrss:edge the error no longer occurs.

Thank you very much for the quick fix.