kevinveenbirkenbach/computer-playbook
1
0
Fork 0
mirror of https://github.com/kevinveenbirkenbach/computer-playbook.git synced 2025-11-06 05:08:16 +00:00
Code Issues Packages Projects Releases Wiki Activity
Files
d6f3618d70590d33acab08fac84e124a141b0411
computer-playbook/roles/web-app-snipe-it
History
Kevin Veen-Birkenbach 57d5269b07 CSP (Safari-safe): merge -elem/-attr into base; respect explicit disables; no mirror-back; header only for documents/workers 
- Add CSP3 support for style/script: include -elem and -attr directives
- Base (style-src, script-src) now unions elem/attr (CSP2/Safari fallback)
- Respect explicit base disables (e.g. style-src.unsafe-inline: false)
- Hashes only when 'unsafe-inline' absent in the final base tokens
- Nginx: set CSP only for HTML/worker via header_filter_by_lua_block; drop for subresources
- Remove per-location header_filter; keep body_filter only
- Update app role flags to *-attr where appropriate; extend desktop CSS sources
- Add comprehensive unit tests for union/explicit-disable/no-mirror-back

Ref: https://chatgpt.com/share/68f87a0a-cebc-800f-bb3e-8c8ab4dee8ee
2025-10-22 13:53:06 +02:00
..
config
CSP (Safari-safe): merge -elem/-attr into base; respect explicit disables; no mirror-back; header only for documents/workers
2025-10-22 13:53:06 +02:00
meta
feat(menu): add Games, Sales, and Customer Relationship Management categories; rename IAM to User Management; update tags (see conversation: https://chatgpt.com/share/68c2bc3c-2178-800f-9c88-c2faf08989dd)
2025-09-11 14:11:02 +02:00
schema
tasks
refactor(ansible): normalize include_role syntax and unify host config paths via path_join
2025-09-22 14:55:25 +02:00
templates
Optimized spacing
2025-08-20 01:01:32 +02:00
vars
Administration.md
README.md

README.md

SnipeIT

Description

SnipeIT is an opensource asset management system designed to streamline hardware and software inventory tracking. This deployment provides an automated, containerized solution using Docker Compose, centralized MariaDB database integration, and secure, configurable environment settings—including robust SMTP email support and pending SAML authentication enhancements.

Overview

This Docker deployment uses Ansible automation to set up SnipeIT along with necessary services such as a MariaDB database, an optional OAuth2 proxy for additional security, and a reverse proxy configuration. The system is built for reliable asset management in various environments.

Features

  • Automated Deployment:
    Launch SnipeIT quickly with Docker Compose and Ansible automation for a productionready platform.

  • Centralized Database Support:
    Leverage MariaDB for secure and reliable data storage.

  • Configurable SMTP Settings:
    Manage email notifications and alerts with customizable SMTP configurations.

  • Optional SAML Authentication:
    Prepare for enhanced, standardsbased authentication (integration pending).

  • Redis Caching:
    Improve application performance with builtin Redis caching support.

Other Resources

Credits

Developed and maintained by Kevin Veen-Birkenbach.
Learn more at veen.world
Part of the Infinito.Nexus Project
License: Infinito.Nexus NonCommercial License