Skip to content

Commit

Permalink
#395 - added csp header
Browse files Browse the repository at this point in the history
  • Loading branch information
@kamilpiech97
kamilpiech97 committed Mar 26, 2024
1 parent b66edef commit 29a4a13
Show file tree
Hide file tree
Showing 2 changed files with 2 additions and 1 deletion.
2 changes: 1 addition & 1 deletion environment/prod/deployment/beta/docker-compose.beta.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -29,7 +29,7 @@ services:
- "traefik.http.routers.toby-beta-app.entrypoints=websecure"
- "traefik.http.routers.toby-beta-app.tls=true"
- "traefik.http.routers.toby-beta-app.tls.certresolver=lets-encrypt-resolver"
- "traefik.http.routers.toby-beta-app.middlewares=response-gzip-compress@file"
- "traefik.http.routers.toby-beta-app.middlewares=response-gzip-compress@file,csp-header@docker"
depends_on:
toby-beta-database:
condition: service_healthy
Expand Down
1 change: 1 addition & 0 deletions resources/views/app.blade.php
View file
Original file line number Diff line number Diff line change
Expand Up @@ -3,6 +3,7 @@
<head>
<meta charset="utf-8"/>
<meta name="viewport" content="width=device-width, initial-scale=1.0, maximum-scale=1.0"/>
<meta http-equiv="Content-Security-Policy" content="default-src 'self'; script-src 'self'; style-src 'self' 'unsafe-inline'; img-src 'self' data:; font-src 'self'; frame-ancestors 'none'; base-uri 'self'; form-action 'self'; frame-src 'self'; object-src 'none'; require-trusted-types-for 'script';">
<link rel="icon" href="/images/icon.png">
<link rel="stylesheet" href="https://rsms.me/inter/inter.css">
@vite('resources/js/app.js')
Expand Down

0 comments on commit 29a4a13

Please sign in to comment.