evo/Evo.Gateway
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

nginx.auth.conf: add csp header to /login

Browse Source
This commit is contained in:
vchikalkin 2024-04-27 14:02:58 +03:00
parent 1406a95ed0
commit f533098276
3 changed files with 5 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1
config/include/csp-header.conf Normal file
View File

@ -0,0 +1 @@
add_header Content-Security-Policy "$CSP_UPGRADE_INSECURE_REQUESTS $CSP_DEFAULT_SRC $CSP_BASE_URI $CSP_CONNECT_SRC $CSP_WORKER_SRC $CSP_FONT_SRC $CSP_SCRIPT_SRC $CSP_STYLE_SRC $CSP_OBJECT_SRC $CSP_FRAME_ANCESTORS";

5
config/nginx.auth.conf
View File

@ -40,6 +40,8 @@ server {
location /login { location /login {
proxy_pass $login_proxy; proxy_pass $login_proxy;
include /etc/nginx/include/csp-header.conf;
} }
location ~ ^/(logout|get-user)$ { location ~ ^/(logout|get-user)$ {
@ -56,8 +58,7 @@ server {
proxy_cache_bypass $http_upgrade; proxy_cache_bypass $http_upgrade;
include /etc/nginx/include/auth.conf; include /etc/nginx/include/auth.conf;
include /etc/nginx/include/csp-header.conf;
add_header Content-Security-Policy "$CSP_UPGRADE_INSECURE_REQUESTS $CSP_DEFAULT_SRC $CSP_BASE_URI $CSP_CONNECT_SRC $CSP_WORKER_SRC $CSP_FONT_SRC $CSP_SCRIPT_SRC $CSP_STYLE_SRC $CSP_OBJECT_SRC $CSP_FRAME_ANCESTORS";
} }
location = /health { location = /health {

2
config/nginx.off.conf
View File

@ -19,7 +19,7 @@ server {
proxy_set_header Host $host; proxy_set_header Host $host;
proxy_cache_bypass $http_upgrade; proxy_cache_bypass $http_upgrade;
add_header Content-Security-Policy "$CSP_UPGRADE_INSECURE_REQUESTS $CSP_DEFAULT_SRC $CSP_BASE_URI $CSP_CONNECT_SRC $CSP_WORKER_SRC $CSP_FONT_SRC $CSP_SCRIPT_SRC $CSP_STYLE_SRC $CSP_OBJECT_SRC $CSP_FRAME_ANCESTORS"; include /etc/nginx/include/csp-header.conf;
} }
location = /health { location = /health {