mirror of https://github.com/kevinveenbirkenbach/computer-playbook.git synced 2025-11-06 21:28:02 +00:00

Files

Kevin Veen-Birkenbach 57d5269b07 CSP (Safari-safe): merge -elem/-attr into base; respect explicit disables; no mirror-back; header only for documents/workers

- Add CSP3 support for style/script: include -elem and -attr directives
- Base (style-src, script-src) now unions elem/attr (CSP2/Safari fallback)
- Respect explicit base disables (e.g. style-src.unsafe-inline: false)
- Hashes only when 'unsafe-inline' absent in the final base tokens
- Nginx: set CSP only for HTML/worker via header_filter_by_lua_block; drop for subresources
- Remove per-location header_filter; keep body_filter only
- Update app role flags to *-attr where appropriate; extend desktop CSS sources
- Add comprehensive unit tests for union/explicit-disable/no-mirror-back

Ref: https://chatgpt.com/share/68f87a0a-cebc-800f-bb3e-8c8ab4dee8ee

2025-10-22 13:53:06 +02:00

filter_plugins

…

README.md

Nginx Global Matomo & Theming Modifier Role 🚀

This role enhances your Nginx configuration by conditionally injecting global Matomo tracking and theming elements into your HTML responses. It uses Nginx sub-filters to seamlessly add tracking scripts and CSS links to your web pages.

Features

Global Matomo Tracking
The role includes Matomo tracking configuration and injects the corresponding tracking script into your HTML.
Global Theming
The role injects a global CSS link for consistent theming across your site.
Smart Injection
Uses Nginx's sub_filter to insert the tracking and theming snippets right before the closing </head> tag of your HTML documents.

This will automatically activate Matomo tracking and/or global theming based on your configuration.

Author

Developed by Kevin Veen-Birkenbach 😎

Happy automating! 🎉