Skip to content

Commit

Permalink
GUI docker: Remove CSP from apache config, it is set using an env var…
Browse files Browse the repository at this point in the history 
…iable in the Docker container
  • Loading branch information
@quartje
quartje committed Jul 15, 2024
1 parent b63366d commit 89f2942
Showing 1 changed file with 0 additions and 1 deletion.
1 change: 0 additions & 1 deletion manage-gui/docker/conf/000-default.conf
View file
Original file line number Diff line number Diff line change
Expand Up @@ -69,7 +69,6 @@ DocumentRoot "/var/www"
Require all granted
</Location>

Header always set Content-Security-Policy "default-src 'self'; object-src 'none'; script-src 'self' 'unsafe-inline'; style-src 'self' 'unsafe-inline'; img-src 'self' https://static.surfconext.nl data:; form-action 'self'; frame-ancestors 'none'; base-uri 'none'"
Header always set X-Frame-Options "DENY"
Header always set Referrer-Policy "same-origin"
Header always set X-Content-Type-Options "nosniff"
Expand Down

0 comments on commit 89f2942

Please sign in to comment.