Disroot-Ansible
/
nginx
11
1
Fork 0
Code Pull Requests 5 Projects Releases Activity

changed default src in csp to self, since none was too restrictive

This commit is contained in:
antilopa 2021-11-02 11:38:27 +01:00 committed by muppeth
parent d86b39070b
commit 31e033a2e3
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
templates/etc/nginx/sites-available/core.j2
View File

@ -72,7 +72,7 @@ server {
{% endif %}
{% if item.header_csp is defined and item.header_csp == 'none' %}
{% else %}
add_header Content-Security-Policy "{{ item.header_csp | default("default-src 'none'; script-src 'self'; connect-src 'self'; img-src 'self'; style-src 'self'; base-uri 'self'; form-action 'self';") }}";
add_header Content-Security-Policy "{{ item.header_csp | default("default-src 'self'; script-src 'self'; connect-src 'self'; img-src 'self'; style-src 'self'; base-uri 'self'; form-action 'self';") }}";
{% endif %}
{% if item.header_cto is defined and item.header_cto == 'none' %}
{% else %}