mirror of
https://github.com/kevinveenbirkenbach/computer-playbook.git
synced 2025-11-19 11:36:39 +00:00
Compare commits
2 Commits
0d99c7f297
...
09a4c243d7
| Author | SHA1 | Date | |
|---|---|---|---|
| 09a4c243d7 | |||
| 1d5a50abf2 |
@@ -19,6 +19,8 @@ location {{location}}
|
||||
|
||||
{% include 'roles/sys-svc-proxy/templates/headers/content_security_policy.conf.j2' %}
|
||||
|
||||
{% include 'roles/sys-svc-proxy/templates/headers/access_control_allow.conf.j2' %}
|
||||
|
||||
# WebSocket specific header
|
||||
proxy_http_version 1.1;
|
||||
proxy_set_header Upgrade $http_upgrade;
|
||||
|
||||
@@ -6,6 +6,8 @@ server {
|
||||
{% include 'roles/sys-front-inj-all/templates/server.conf.j2'%}
|
||||
|
||||
{% include 'roles/sys-svc-proxy/templates/headers/content_security_policy.conf.j2' %}
|
||||
|
||||
{% include 'roles/sys-svc-proxy/templates/headers/access_control_allow.conf.j2' %}
|
||||
|
||||
##
|
||||
# Application
|
||||
|
||||
@@ -7,6 +7,8 @@ server
|
||||
{% include 'roles/sys-front-inj-all/templates/server.conf.j2'%}
|
||||
|
||||
{% include 'roles/sys-svc-proxy/templates/headers/content_security_policy.conf.j2' %}
|
||||
|
||||
{% include 'roles/sys-svc-proxy/templates/headers/access_control_allow.conf.j2' %}
|
||||
|
||||
charset utf-8;
|
||||
|
||||
|
||||
@@ -2,10 +2,13 @@ server {
|
||||
server_name {{ domain }};
|
||||
|
||||
{% include 'roles/sys-svc-letsencrypt/templates/ssl_header.j2' %}
|
||||
|
||||
{% include 'roles/sys-front-inj-all/templates/server.conf.j2'%}
|
||||
|
||||
{% include 'roles/sys-svc-proxy/templates/headers/content_security_policy.conf.j2' %}
|
||||
|
||||
{% include 'roles/sys-svc-proxy/templates/headers/access_control_allow.conf.j2' %}
|
||||
|
||||
{# Normal HTTP routes (discovery, browser, assets) – no Lua injection #}
|
||||
{% set proxy_lua_enabled = false %}
|
||||
{% set location = "/" %}
|
||||
|
||||
@@ -8,6 +8,8 @@ server
|
||||
|
||||
{% include 'roles/sys-svc-proxy/templates/headers/content_security_policy.conf.j2' %}
|
||||
|
||||
{% include 'roles/sys-svc-proxy/templates/headers/access_control_allow.conf.j2' %}
|
||||
|
||||
charset utf-8;
|
||||
|
||||
location /
|
||||
|
||||
@@ -7,6 +7,8 @@ server
|
||||
{% include 'roles/sys-front-inj-all/templates/server.conf.j2'%}
|
||||
|
||||
{% include 'roles/sys-svc-proxy/templates/headers/content_security_policy.conf.j2' %}
|
||||
|
||||
{% include 'roles/sys-svc-proxy/templates/headers/access_control_allow.conf.j2' %}
|
||||
|
||||
charset utf-8;
|
||||
|
||||
|
||||
@@ -2,6 +2,6 @@
|
||||
- name: copy imprint.html
|
||||
template:
|
||||
src: "imprint.html.j2"
|
||||
dest: "{{NGINX.DIRECTORIES.DATA.HTML}}imprint.html"
|
||||
dest: "{{ [ NGINX.DIRECTORIES.DATA.HTML, 'imprint.html' ] | path_join }}"
|
||||
owner: "{{ NGINX.USER }}"
|
||||
group: "{{ NGINX.USER }}"
|
||||
@@ -4,10 +4,9 @@
|
||||
include_role:
|
||||
name: sys-stk-full-stateless
|
||||
vars:
|
||||
aca_origin: "* always"
|
||||
aca_methods: "'GET, OPTIONS' always"
|
||||
aca_headers: "'Accept, Authorization, Content-Type' always"
|
||||
|
||||
aca_origin: "* always"
|
||||
aca_methods: "'GET, OPTIONS' always"
|
||||
aca_headers: '"Origin, X-Requested-With, Content-Type, Accept, Authorization" always'
|
||||
- name: "Copy '{{ application_id }}' files"
|
||||
template:
|
||||
src: "{{ item.source }}"
|
||||
|
||||
Reference in New Issue
Block a user