diff --git a/volumes/conf.d/code.zinomedia.de.conf b/volumes/conf.d/code.zinomedia.de.conf
index 4befc35..bafc152 100644
--- a/volumes/conf.d/code.zinomedia.de.conf
+++ b/volumes/conf.d/code.zinomedia.de.conf
@@ -1,11 +1,8 @@
-#log_format custom2 '[$time_iso8601] CODE | request_uri: $request_uri | status: $status | http_host: $http_host | auth_resp_x_vouch_user: $auth_resp_x_vouch_user | upstream_http_x_vouch_user: $upstream_http_x_vouch_user | auth_resp_jwt: $auth_resp_jwt | upstream_http_x_vouch_jwt: $upstream_http_x_vouch_jwt | auth_resp_err: $auth_resp_err | upstream_http_x_vouch_err: $upstream_http_x_vouch_err | auth_resp_failcount: $auth_resp_failcount | upstream_http_x_vouch_failcount: $upstream_http_x_vouch_failcount';
-
 server {
     listen 443 ssl;
     listen [::]:443 ssl;
     server_name code.zinomedia.de;
 
-    #access_log /var/log/nginx/access.log custom2;
     access_log off;
     error_log /var/log/nginx/error.log debug;
 
@@ -15,8 +12,6 @@ server {
     include "snippets/ssl-optimizations.conf";
     include "snippets/enable-vouch.conf";
 
-    add_header Content-Security-Policy "default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval'; img-src 'self' data:; style-src 'self' 'unsafe-inline'; font-src 'self' data:;" always;
-
     location / {
         resolver 127.0.0.11;
         set $upstream "http://code-server:8443";