Infrastructure/ansible
1
0
Fork 0
Code Issues Pull requests 6 Projects Releases Packages Wiki Activity Actions

Add strict CSP to getfedora.org

Browse source 
Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>
This commit is contained in:
Patrick Uiterwijk 2019-05-13 13:24:42 +02:00
parent 6842ba7df8
commit 8e6a2b55c9
2 changed files with 2 additions and 0 deletions
Download patch file Download diff file Expand all files Collapse all files

1
roles/fedora-web/getfedora/files/csp.conf Normal file
View file

@ -0,0 +1 @@
Header always set Content-Security-Policy "default-src 'none'; img-src 'self' https://fedoramagazine.org; script-src 'self'; style-src 'self' https://fonts.googleapis.com; font-src 'self' https://fonts.gstatic.com; connect-src https://fedoramagazine.org; "

1
roles/fedora-web/getfedora/tasks/main.yml
View file

@ -11,6 +11,7 @@
with_items:
- getfedora.org.conf
- languages.conf
- csp.conf
notify:
- reload proxyhttpd
tags: