kevinveenbirkenbach/computer-playbook
1
0
Fork 0
mirror of https://github.com/kevinveenbirkenbach/computer-playbook.git synced 2025-08-29 15:06:26 +02:00
Code Issues Packages Projects Releases Wiki Activity

Changed iframe options

Browse Source
This commit is contained in:
Kevin Veen-Birkenbach
2025-03-20 04:31:02 +01:00
parent 87ca1ccc11
commit 0611ddda11
8 changed files with 15 additions and 14 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
roles/nginx-docker-reverse-proxy/templates/iframe.conf.j2
View File

@@ -1,4 +1,4 @@
add_header X-Frame-Options "SAMEORIGIN" always; # Allow iframe embedding only from the same origin
{% if landingpage_iframe_enabled | default(applications.get(application_id).get('landingpage_iframe_enabled')) | bool %}
add_header Content-Security-Policy "frame-ancestors {{primary_domain}};" always; # Restrict embedding to the specified primary domain
add_header X-Frame-Options "SAMEORIGIN" always;
add_header Content-Security-Policy "frame-ancestors 'self' {{primary_domain}};" always;
{% endif %}