Replaced web_protocol by WEB_PROTOCOL

2025-08-30 15:28:12 +02:00 · 2025-08-07 12:31:20 +02:00
parent 9228d51e86
commit 7f53cc3a12
48 changed files with 67 additions and 67 deletions
--- a/roles/web-svc-logout/config/main.yml
+++ b/roles/web-svc-logout/config/main.yml
@@ -16,12 +16,12 @@ server:
        unsafe-inline: true
    whitelist:
      connect-src:
-        - "{{ web_protocol }}://*.{{ primary_domain }}"
-        - "{{ web_protocol }}://{{ primary_domain }}"
+        - "{{ WEB_PROTOCOL }}://*.{{ primary_domain }}"
+        - "{{ WEB_PROTOCOL }}://{{ primary_domain }}"
      script-src-elem:
        - https://cdn.jsdelivr.net
      style-src:
        - https://cdn.jsdelivr.net
      frame-ancestors:
-        - "{{ web_protocol }}://<< defaults_applications[web-app-keycloak].server.domains.canonical[0] >>"
+        - "{{ WEB_PROTOCOL }}://<< defaults_applications[web-app-keycloak].server.domains.canonical[0] >>"

--- a/roles/web-svc-logout/templates/logout-proxy.conf.j2
+++ b/roles/web-svc-logout/templates/logout-proxy.conf.j2
@@ -8,7 +8,7 @@ location = /logout {
    proxy_http_version 1.1;

    # CORS headers – allow your central page to call this
-    add_header 'Access-Control-Allow-Origin'  '{{ domains | get_url('web-svc-logout', web_protocol) }}' always;
+    add_header 'Access-Control-Allow-Origin'  '{{ domains | get_url('web-svc-logout', WEB_PROTOCOL) }}' always;
    add_header 'Access-Control-Allow-Credentials' 'true'                                                always;
    add_header 'Access-Control-Allow-Methods' 'GET, OPTIONS'                                            always;
    add_header 'Access-Control-Allow-Headers' 'Accept, Authorization'                                   always;