mirror of
https://github.com/kevinveenbirkenbach/computer-playbook.git
synced 2025-09-09 19:57:16 +02:00
Kevin Veen-Birkenbach
231fd567b3
Introduce sys-svc-cdn (cdn_paths/cdn_urls/cdn_dirs) and ensure CDN directories + latest symlink. Rename sys-srv-web-inj-* → sys-front-inj-*; update includes/templates; serve shared/per-app CSS & JS via CDN. Add lookup_plugins/local_mtime_qs.py for mtime-based cache busting; split CSS into default.css/bootstrap.css + optional per-app style.css. CSP: use style-src-elem; drop unsafe-inline for styles. Services: fix SYS_SERVICE_ALL_ENABLED bool and controlled flush. BREAKING CHANGE: role names changed; replace includes and references accordingly. Conversation: https://chatgpt.com/share/68b55494-9ec4-800f-b559-44707029141d
24 lines
877 B
Markdown
24 lines
877 B
Markdown
|
||
# 🌐 iFrame Notifier for Nginx
|
||
|
||
This Ansible role injects a small JavaScript snippet into your HTML responses that enables parent pages to get notified whenever the iframe’s location changes and forces external links to open in a new tab.
|
||
|
||
---
|
||
|
||
## Features
|
||
|
||
- **Location Change Notification**
|
||
Uses `postMessage` to inform the parent window of any URL changes inside the iframe (including pushState/popState events) for seamless SPA support.
|
||
|
||
- **External Link Handling**
|
||
Automatically sets `target="_blank"` and `rel="noopener"` on links pointing outside your primary domain to improve security and user experience.
|
||
|
||
- **Easy CSP Integration**
|
||
Calculates a CSP hash for the injected script so you can safely allow it via your Content Security Policy.
|
||
|
||
---
|
||
|
||
## Author
|
||
|
||
Developed by **Kevin Veen-Birkenbach**
|
||
[https://www.veen.world](https://www.veen.world) 🎉 |