mirror of
				https://github.com/kevinveenbirkenbach/computer-playbook.git
				synced 2025-10-31 10:19:09 +00:00 
			
		
		
		
	Add centralized include for Access-Control-Allow headers across proxy/service Nginx templates and align ACA vars for simpleicons task.
Ref: https://chatgpt.com/share/68dbf59c-f424-800f-aa27-787db52e260f
This commit is contained in:
		| @@ -19,6 +19,8 @@ location {{location}} | ||||
|  | ||||
|   {% include 'roles/sys-svc-proxy/templates/headers/content_security_policy.conf.j2' %} | ||||
|  | ||||
|   {% include 'roles/sys-svc-proxy/templates/headers/access_control_allow.conf.j2' %} | ||||
|  | ||||
|   # WebSocket specific header | ||||
|   proxy_http_version 1.1; | ||||
|   proxy_set_header Upgrade $http_upgrade; | ||||
|   | ||||
| @@ -6,6 +6,8 @@ server { | ||||
|   {% include 'roles/sys-front-inj-all/templates/server.conf.j2'%} | ||||
|    | ||||
|   {% include 'roles/sys-svc-proxy/templates/headers/content_security_policy.conf.j2' %} | ||||
|  | ||||
|   {% include 'roles/sys-svc-proxy/templates/headers/access_control_allow.conf.j2' %} | ||||
|    | ||||
|   ## | ||||
|   # Application | ||||
|   | ||||
| @@ -7,6 +7,8 @@ server | ||||
|   {% include 'roles/sys-front-inj-all/templates/server.conf.j2'%} | ||||
|  | ||||
|   {% include 'roles/sys-svc-proxy/templates/headers/content_security_policy.conf.j2' %} | ||||
|  | ||||
|   {% include 'roles/sys-svc-proxy/templates/headers/access_control_allow.conf.j2' %} | ||||
|    | ||||
|   charset utf-8; | ||||
|    | ||||
|   | ||||
| @@ -2,10 +2,13 @@ server { | ||||
|   server_name {{ domain }}; | ||||
|  | ||||
|   {% include 'roles/sys-svc-letsencrypt/templates/ssl_header.j2' %} | ||||
|    | ||||
|   {% include 'roles/sys-front-inj-all/templates/server.conf.j2'%} | ||||
|  | ||||
|   {% include 'roles/sys-svc-proxy/templates/headers/content_security_policy.conf.j2' %} | ||||
|  | ||||
|   {% include 'roles/sys-svc-proxy/templates/headers/access_control_allow.conf.j2' %} | ||||
|  | ||||
|   {# Normal HTTP routes (discovery, browser, assets) – no Lua injection #} | ||||
|   {% set proxy_lua_enabled = false %} | ||||
|   {% set location = "/" %} | ||||
|   | ||||
| @@ -8,6 +8,8 @@ server | ||||
|  | ||||
|   {% include 'roles/sys-svc-proxy/templates/headers/content_security_policy.conf.j2' %} | ||||
|    | ||||
|   {% include 'roles/sys-svc-proxy/templates/headers/access_control_allow.conf.j2' %} | ||||
|  | ||||
|   charset utf-8; | ||||
|    | ||||
|   location / | ||||
|   | ||||
| @@ -7,6 +7,8 @@ server | ||||
|   {% include 'roles/sys-front-inj-all/templates/server.conf.j2'%} | ||||
|  | ||||
|   {% include 'roles/sys-svc-proxy/templates/headers/content_security_policy.conf.j2' %} | ||||
|  | ||||
|   {% include 'roles/sys-svc-proxy/templates/headers/access_control_allow.conf.j2' %} | ||||
|    | ||||
|   charset utf-8; | ||||
|    | ||||
|   | ||||
| @@ -4,10 +4,9 @@ | ||||
|     include_role: | ||||
|       name: sys-stk-full-stateless | ||||
|     vars: | ||||
|       aca_origin:   "* always" | ||||
|       aca_methods:  "'GET, OPTIONS' always" | ||||
|       aca_headers:  "'Accept, Authorization, Content-Type' always" | ||||
|  | ||||
|       aca_origin:  "* always" | ||||
|       aca_methods: "'GET, OPTIONS' always" | ||||
|       aca_headers: '"Origin, X-Requested-With, Content-Type, Accept, Authorization" always' | ||||
|   - name: "Copy '{{ application_id }}' files" | ||||
|     template: | ||||
|       src: "{{ item.source }}" | ||||
|   | ||||
		Reference in New Issue
	
	Block a user