Set the nginx Content-Security-Policy header to allow embedding the Gitea instance in an iframe on the pad.lassul.us instance.
All checks were successful
checks / test (pull_request) Successful in 25s
All checks were successful
checks / test (pull_request) Successful in 25s
This commit is contained in:
parent
c6f0a4c8bd
commit
182610ff52
|
@ -36,8 +36,10 @@
|
|||
services.nginx.virtualHosts."git.clan.lol" = {
|
||||
forceSSL = true;
|
||||
enableACME = true;
|
||||
# The add_header directive is used to set the Content-Security-Policy header to allow embedding the Gitea instance in an iframe on the pad.lassul.us instance.
|
||||
locations."/".extraConfig = ''
|
||||
proxy_pass http://localhost:3002;
|
||||
add_header Content-Security-Policy "frame-ancestors 'self' https://pad.lassul.us";
|
||||
'';
|
||||
};
|
||||
}
|
||||
|
|
Loading…
Reference in New Issue
Block a user