From 5077f5f6ade368bc63873599d2bf70f535414fae Mon Sep 17 00:00:00 2001
From: Kevin Veen-Birkenbach <kevin@veen.world>
Date: Thu, 5 Jun 2025 00:06:43 +0200
Subject: [PATCH] Optimized Wordpress conf and solved snipe-it CSP bug

---
 roles/docker-snipe-it/vars/configuration.yml  |  7 +++++--
 roles/docker-wordpress/vars/configuration.yml | 11 -----------
 2 files changed, 5 insertions(+), 13 deletions(-)

diff --git a/roles/docker-snipe-it/vars/configuration.yml b/roles/docker-snipe-it/vars/configuration.yml
index 87f103d0..aee36da0 100644
--- a/roles/docker-snipe-it/vars/configuration.yml
+++ b/roles/docker-snipe-it/vars/configuration.yml
@@ -9,10 +9,13 @@ domains:
     - "inventory.{{ primary_domain }}"
 csp:
   flags:
+    script-src:
+      unsafe-inline:  true
+      unsafe-eval:    true
     script-src-elem:
-      unsafe-inline: true
+      unsafe-inline:  true
     style-src:
-      unsafe-inline: true
+      unsafe-inline:  true
   whitelist:
     font-src:
       - "data:"
\ No newline at end of file
diff --git a/roles/docker-wordpress/vars/configuration.yml b/roles/docker-wordpress/vars/configuration.yml
index 8d66b328..25c40db0 100644
--- a/roles/docker-wordpress/vars/configuration.yml
+++ b/roles/docker-wordpress/vars/configuration.yml
@@ -38,17 +38,6 @@ csp:
     frame-src:
       - "blob:"
       - "*.{{ primary_domain }}"
-    #frame-src: >-
-    #  {{
-    #    ['*.{}'.format(primary_domain)]
-    #    +
-    #    (
-    #      applications.wordpress.domains.canonical
-    #      | default([])
-    #      | map('regex_replace', '^(.*)$', 'blob:\g<1>')
-    #      | list
-    #    )
-    #  }}
 domains:
   canonical:
     - "blog.{{ primary_domain }}"