clan/clan-infra
10
0
Fork 0
Code Issues Pull Requests 1 Actions Packages Projects Releases Wiki Activity

Set the nginx Content-Security-Policy header to allow embedding the Gitea instance in an iframe on the pad.lassul.us instance.
All checks were successful
checks / test (pull_request) Successful in 25s
Details

Browse Source
This commit is contained in:
Luis Hebendanz 2024-03-17 18:18:21 +07:00
parent c6f0a4c8bd
commit 182610ff52
1 changed files with 2 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
modules/web01/gitea/default.nix
View File

@ -36,8 +36,10 @@
services.nginx.virtualHosts."git.clan.lol" = {
forceSSL = true;
enableACME = true;
# The add_header directive is used to set the Content-Security-Policy header to allow embedding the Gitea instance in an iframe on the pad.lassul.us instance.
locations."/".extraConfig = ''
proxy_pass http://localhost:3002;
add_header Content-Security-Policy "frame-ancestors 'self' https://pad.lassul.us";
'';
};
}