Allow inline style elements for event-admin CSP

app/Http/Middleware/ContentSecurityPolicy.php

@@ -33,6 +33,8 @@ class ContentSecurityPolicy
             return $response;
         }
 
+        $allowUnsafeInlineStyles = $request->is('event-admin*');
+
         $matomoOrigin = $this->normaliseOrigin(config('services.matomo.url'));
         $scriptSources = [
             "'self'",
@@ -46,6 +48,9 @@ class ContentSecurityPolicy
             "'nonce-{$styleNonce}'",
             'https:',
         ];
+        if ($allowUnsafeInlineStyles) {
+            $styleSources[] = "'unsafe-inline'";
+        }
 
         $connectSources = [
             "'self'",