clan/clan-infra
10
0
Fork 1
Code Issues Pull Requests 1 Actions Packages Projects Releases Wiki Activity

Set the nginx Content-Security-Policy header to allow embedding the Gitea instance in an iframe on the pad.lassul.us instance.

Browse Source
This commit is contained in:
Luis Hebendanz 2024-03-17 18:18:21 +07:00 committed by Jörg Thalheim
parent c69be4155d
commit b14d3f97e2
1 changed files with 2 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
modules/web01/gitea/default.nix
View File

@ -36,8 +36,10 @@
services.nginx.virtualHosts."git.clan.lol" = { services.nginx.virtualHosts."git.clan.lol" = {
forceSSL = true; forceSSL = true;
enableACME = true; enableACME = true;
# The add_header directive is used to set the Content-Security-Policy header to allow embedding the Gitea instance in an iframe on the pad.lassul.us instance.
locations."/".extraConfig = '' locations."/".extraConfig = ''
proxy_pass http://localhost:3002; proxy_pass http://localhost:3002;
add_header Content-Security-Policy "frame-ancestors 'self' https://pad.lassul.us";
''; '';
}; };
} }