htwkmooc/codeocean
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Update CSP config example

Browse Source
This commit is contained in:
Sebastian Serth
2023-04-14 15:55:19 +02:00
parent ccaf49acd5
commit 4353414b8e
1 changed files with 6 additions and 4 deletions
Download Patch File Download Diff File Expand all files Collapse all files

10
config/content_security_policy.yml.example
View File

@ -1,6 +1,7 @@
# This file allows to further customize the Content Security Policy (CSP) # This file allows to further customize the Content Security Policy (CSP).
# All settings will be applied **in addition** to the application CSP # All settings will be applied **in addition** to the application CSP.
# Default directives are defined here: `initializers/content_security_policy.rb` # Additional keys can be added if required.
# Default directives are defined here: `initializers/content_security_policy.rb`.
default: &default default: &default
# Allow the S3 service hosted by the openHPI Cloud to be used for images # Allow the S3 service hosted by the openHPI Cloud to be used for images
@ -15,7 +16,8 @@ default: &default
- wss://codeocean.openhpi.de - wss://codeocean.openhpi.de
# Enable the StackExchange API for Flowr # Enable the StackExchange API for Flowr
# - https://api.stackexchange.com # - https://api.stackexchange.com
# Optionally: Specify a custom, non-Sentry URL for reporting CSP violations # Optionally: Specify a custom, non-Sentry URL for reporting CSP violations.
# For Sentry, set the `SENTRY_CSP_REPORT_URL` environment variable.
# report_uri: https://example.com/csp-report # report_uri: https://example.com/csp-report