kunsi/bundlewrap
1
0
Fork 0
Code Issues 2 Pull requests 1 Releases Activity

nodes/voc.pretalx: work around content-security-policy issues
All checks were successful
bundlewrap/pipeline/head This commit looks good
Details

Browse source
This commit is contained in:
Franzi 2021-04-05 08:18:21 +02:00
parent aad27851bb
commit 24f04e59aa
Signed by: kunsi
GPG key ID: 12E3D2136B818350
2 changed files with 4 additions and 3 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

3
bundles/c3voc-addons/files/site_template
View file

@ -26,9 +26,6 @@ server {
client_max_body_size 5M;
% endif
add_header Referrer-Policy same-origin;
add_header X-Content-Type-Options nosniff;
location /.well-known/acme-challenge/ {
alias /var/www/dehydrated;
}

4
data/nginx/files/extras/voc.pretalx/pretalx
View file

@ -11,3 +11,7 @@
expires 365d;
add_header Cache-Control "public";
}
# https://github.com/pretalx/pretalx-media-ccc-de/issues/1
proxy_hide_header content-security-policy;
add_header content-security-policy "form-action 'self'; default-src 'self'; img-src 'self' data: https://www.gravatar.com; style-src 'self' 'unsafe-inline'; script-src 'self'; base-uri 'none'; frame-src https://media.ccc.de";