htwkmooc/codeocean
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Update CSP config example

Browse Source
This commit is contained in:
Sebastian Serth
2023-04-14 15:55:19 +02:00
parent ccaf49acd5
commit 4353414b8e
1 changed files with 6 additions and 4 deletions
Download Patch File Download Diff File Expand all files Collapse all files

10
config/content_security_policy.yml.example
View File

@ -1,6 +1,7 @@
# This file allows to further customize the Content Security Policy (CSP)
# All settings will be applied **in addition** to the application CSP
# Default directives are defined here: `initializers/content_security_policy.rb`
# This file allows to further customize the Content Security Policy (CSP).
# All settings will be applied **in addition** to the application CSP.
# Additional keys can be added if required.
# Default directives are defined here: `initializers/content_security_policy.rb`.
default: &default
# Allow the S3 service hosted by the openHPI Cloud to be used for images
@ -15,7 +16,8 @@ default: &default
- wss://codeocean.openhpi.de
# Enable the StackExchange API for Flowr
# - https://api.stackexchange.com
# Optionally: Specify a custom, non-Sentry URL for reporting CSP violations
# Optionally: Specify a custom, non-Sentry URL for reporting CSP violations.
# For Sentry, set the `SENTRY_CSP_REPORT_URL` environment variable.
# report_uri: https://example.com/csp-report