kevinveenbirkenbach/computer-playbook
1
0
Fork 0
mirror of https://github.com/kevinveenbirkenbach/computer-playbook.git synced 2025-10-31 10:19:09 +00:00
Code Issues Packages Projects Releases Wiki Activity

Add centralized include for Access-Control-Allow headers across proxy/service Nginx templates and align ACA vars for simpleicons task.

Browse Source 
Ref: https://chatgpt.com/share/68dbf59c-f424-800f-aa27-787db52e260f
This commit is contained in:
Kevin Veen-Birkenbach
2025-09-30 17:22:28 +02:00
parent 1d5a50abf2
commit 09a4c243d7
7 changed files with 16 additions and 4 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
roles/sys-svc-proxy/templates/location/html.conf.j2
View File

@@ -19,6 +19,8 @@ location {{location}}
{% include 'roles/sys-svc-proxy/templates/headers/content_security_policy.conf.j2' %}
{% include 'roles/sys-svc-proxy/templates/headers/access_control_allow.conf.j2' %}
# WebSocket specific header
proxy_http_version 1.1;
proxy_set_header Upgrade $http_upgrade;

2
roles/web-app-peertube/templates/peertube.conf.j2
View File

@@ -6,6 +6,8 @@ server {
{% include 'roles/sys-front-inj-all/templates/server.conf.j2'%}
{% include 'roles/sys-svc-proxy/templates/headers/content_security_policy.conf.j2' %}
{% include 'roles/sys-svc-proxy/templates/headers/access_control_allow.conf.j2' %}
##
# Application

2
roles/web-svc-cdn/templates/nginx.conf.j2
View File

@@ -7,6 +7,8 @@ server
{% include 'roles/sys-front-inj-all/templates/server.conf.j2'%}
{% include 'roles/sys-svc-proxy/templates/headers/content_security_policy.conf.j2' %}
{% include 'roles/sys-svc-proxy/templates/headers/access_control_allow.conf.j2' %}
charset utf-8;

3
roles/web-svc-collabora/templates/nginx.conf.j2
View File

@@ -2,10 +2,13 @@ server {
server_name {{ domain }};
{% include 'roles/sys-svc-letsencrypt/templates/ssl_header.j2' %}
{% include 'roles/sys-front-inj-all/templates/server.conf.j2'%}
{% include 'roles/sys-svc-proxy/templates/headers/content_security_policy.conf.j2' %}
{% include 'roles/sys-svc-proxy/templates/headers/access_control_allow.conf.j2' %}
{# Normal HTTP routes (discovery, browser, assets) no Lua injection #}
{% set proxy_lua_enabled = false %}
{% set location = "/" %}

2
roles/web-svc-file/templates/nginx.conf.j2
View File

@@ -8,6 +8,8 @@ server
{% include 'roles/sys-svc-proxy/templates/headers/content_security_policy.conf.j2' %}
{% include 'roles/sys-svc-proxy/templates/headers/access_control_allow.conf.j2' %}
charset utf-8;
location /

2
roles/web-svc-html/templates/nginx.conf.j2
View File

@@ -7,6 +7,8 @@ server
{% include 'roles/sys-front-inj-all/templates/server.conf.j2'%}
{% include 'roles/sys-svc-proxy/templates/headers/content_security_policy.conf.j2' %}
{% include 'roles/sys-svc-proxy/templates/headers/access_control_allow.conf.j2' %}
charset utf-8;

7
roles/web-svc-simpleicons/tasks/main.yml
View File

@@ -4,10 +4,9 @@
include_role:
name: sys-stk-full-stateless
vars:
aca_origin: "* always"
aca_methods: "'GET, OPTIONS' always"
aca_headers: "'Accept, Authorization, Content-Type' always"
aca_origin: "* always"
aca_methods: "'GET, OPTIONS' always"
aca_headers: '"Origin, X-Requested-With, Content-Type, Accept, Authorization" always'
- name: "Copy '{{ application_id }}' files"
template:
src: "{{ item.source }}"