clan/clan-infra
10
0
Fork 1
Code Issues Pull Requests 1 Actions Packages Projects Releases Wiki Activity

Merge pull request 'Set the nginx Content-Security-Policy header to allow embedding the Gitea instance in an iframe on the pad.lassul.us instance.' (#148) from Qubasa-main into main
All checks were successful
checks / test (push) Successful in 26s
Details

Browse Source
This commit is contained in:
clan-bot 2024-03-17 11:21:19 +00:00
commit 60b8b56522
1 changed files with 2 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
modules/web01/gitea/default.nix
View File

@ -36,8 +36,10 @@
services.nginx.virtualHosts."git.clan.lol" = { services.nginx.virtualHosts."git.clan.lol" = {
forceSSL = true; forceSSL = true;
enableACME = true; enableACME = true;
# The add_header directive is used to set the Content-Security-Policy header to allow embedding the Gitea instance in an iframe on the pad.lassul.us instance.
locations."/".extraConfig = '' locations."/".extraConfig = ''
proxy_pass http://localhost:3002; proxy_pass http://localhost:3002;
add_header Content-Security-Policy "frame-ancestors 'self' https://pad.lassul.us";
''; '';
}; };
} }