Matrix element app

Element is working, limited to fairkom staff only, defaults to matrix.dev.osalliance.com , authenticate with SSO (fairlogin) also works.

When activating automatic sing in with SSO we get

Content Security Policy: The page’s settings blocked the loading of a resource at https://id.fairkom.net/auth/realms/fairlogin/protocol/openid-connect/auth?response_type=code&client_id=synapse&redirect_uri=https%3A%2F%2Fmatrix.dev.osalliance.com%2F_synapse%2Fclient%2Foidc%2Fcallback&scope=openid+profile&state=CxWY9ZJMfyBsgEaYQSHj49SKu1WLu2&nonce=vRbUfRIRwcSMysP0zJ6Ku3pxgWVCKZ (“frame-src”).

So where do we put the CSP exemption? Better not .htaccess as this is being overwritten at nextcloud upgrades.