mirror of
https://github.com/kevinveenbirkenbach/computer-playbook.git
synced 2025-11-03 19:58:14 +00:00
Kevin Veen-Birkenbach
aa19a97ed6
- Add reusable Nginx include: roles/sys-svc-proxy/templates/headers/access_control_allow.conf.j2
(dynamic ACAO/credentials/methods/headers via role vars)
- Set global 'Vary: Origin' in nginx.conf.j2 to prevent cache poisoning
- CSP: allow Simple Icons via connect-src when feature is enabled
- Front proxy: rename vars to lowercase + flush handlers after config deploy
- Desktop: gate & load Simple Icons role; inject brand logos when enabled
- Bluesky + Logout: replace inline CORS with centralized include
- Simpleicons: public CORS (ACAO='*', no credentials), keep GET/OPTIONS, allow headers
- Taiga: adjust canonical domain to taiga.kanban.{{ PRIMARY_DOMAIN }}
- LibreTranslate: remove unused images/versions keys
Fixes: https://open.project.infinito.nexus/projects/cymais/work_packages/342/activity
Discussion: https://chatgpt.com/share/68da5e27-ffd4-800f-91a3-0ef103058d44
28 lines
753 B
YAML
28 lines
753 B
YAML
|
|
credentials: {}
|
|
docker:
|
|
services:
|
|
redis:
|
|
enabled: false # Enable Redis
|
|
database:
|
|
enabled: false # Enable the database
|
|
features:
|
|
matomo: false # Matomo tracking isn't necessary
|
|
css: true # Enable Global CSS Styling
|
|
desktop: true # Enable loading of app in iframe
|
|
ldap: false # Enable LDAP Network
|
|
central_database: false # Enable Central Database Network
|
|
recaptcha: false # Enable ReCaptcha
|
|
oauth2: false # Enable the OAuth2-Proy
|
|
server:
|
|
csp: {}
|
|
domains:
|
|
canonical:
|
|
- "icons.{{ PRIMARY_DOMAIN }}"
|
|
aliases: []
|
|
rbac:
|
|
roles:
|
|
mail-bot:
|
|
description: "Has an token to send and receive emails"
|
|
|