fix: Allow Connection to Hubspot

[ashin-czi]

Cannot make a request to Hubspot

modifying headers to match GE: https://github.com/chanzuckerberg/single-cell-data-portal/pull/4679/files#diff-e064de65d4610383e665a32e7e32ee1f520c466a6a63ecea8925ff8337f08215:~:text=frontend/next.config.js

[tihuan]

Seems like if we have the form URL in default src, the URL won't need to be in other directives 😄?

https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Content-Security-Policy/default-src

[ashin-czi]

Don't think this worked so I'm trying to explicitly put it in the other directives in this new PR :^]

#634

[tihuan]

LGTM! Just one non-blocking question. Thanks so much for resolving this, Andrew 🙏

[codecov]

Codecov Report

Merging #633 (94159bb) into main (d99f066) will not change coverage.
The diff coverage is n/a.

❗ Current head 94159bb differs from pull request most recent head b40945f. Consider uploading reports for the commit b40945f to get more accurate results

@@           Coverage Diff           @@
##             main     #633   +/-   ##
=======================================
  Coverage   77.67%   77.67%           
=======================================
  Files          88       88           
  Lines        6754     6754           
=======================================
  Hits         5246     5246           
  Misses       1508     1508           

Flag	Coverage Δ
frontend	77.67% <ø> (ø)
javascript	77.67% <ø> (ø)
smokeTest	∅ <ø> (∅)
unitTest	77.67% <ø> (ø)

Flags with carried forward coverage won't be shown. Click here to find out more.

📣 We’re building smart automated test selection to slash your CI/CD build times. Learn more

[ashin-czi]

LGTM! Just one non-blocking question. Thanks so much for resolving this, Andrew 🙏

So maybe something like this?

It's weird because can't really test it locally 😅