Fix nginx config for Chrome

2024-09-03 18:36:24 +02:00 · 2020-05-18 20:35:14 +01:00 · 2020-05-18 20:35:14 +01:00 · c666372f94
commit c666372f94
parent bd88ba17de
1 changed files with 16 additions and 17 deletions
--- a/conf/nginx.conf
+++ b/conf/nginx.conf
@ -1,31 +1,30 @@
 location / {
-        include __FINALPATH__/code/deploy/funkwhale_proxy.conf;
-        # this is needed if you have file import via upload enabled
-        client_max_body_size 100M;
-        proxy_pass   http://127.0.0.1:__PORT__/;
+    include __FINALPATH__/code/deploy/funkwhale_proxy.conf;
+    # this is needed if you have file import via upload enabled
+    client_max_body_size 100M;
+    proxy_pass   http://127.0.0.1:__PORT__/;
 }

 location /front/ {
-        alias __FINALPATH__/code/front/dist/;
+    alias __FINALPATH__/code/front/dist/;
 	expires 30d;
-        more_set_headers Pragma public;
-        more_set_headers Cache-Control "public, must-revalidate, proxy-revalidate";
-        more_set_headers Content-Security-Policy "default-src 'self'; script-src 'self'; style-src 'self' 'unsafe-inline'; img-src 'self' data:; font-src 'self' data:; object-src 'none'; media-src 'self' data:";
-        more_set_headers Referrer-Policy "strict-origin-when-cross-origin";
-        more_set_headers X-Frame-Options "SAMEORIGIN";
-		more_set_headers Service-Worker-Allowed "/";
+    more_set_headers "Pragma: public";
+    more_set_headers "Cache-Control: public, must-revalidate, proxy-revalidate";
+    more_set_headers "Content-Security-Policy: default-src 'self'; script-src 'self'; style-src 'self' 'unsafe-inline'; img-src 'self' data:; font-src 'self' data:; object-src 'none'; media-src 'self' data:";
+    more_set_headers "Referrer-Policy: strict-origin-when-cross-origin";
+    more_set_headers "X-Frame-Options: SAMEORIGIN";
+	more_set_headers "Service-Worker-Allowed: /;

 }

 location /front/embed.html {
-	more_set_headers Content-Security-Policy "default-src 'self'; script-src 'self'; style-src 'self' 'unsafe-inline'; img-src 'self' data:; font-src 'self' data:; object-src 'none'; media-src 'self' data:";
-    more_set_headers Referrer-Policy "strict-origin-when-cross-origin";
-	more_set_headers X-Frame-Options "ALLOW";
+	more_set_headers "Content-Security-Policy: default-src 'self'; script-src 'self'; style-src 'self' 'unsafe-inline'; img-src 'self' data:; font-src 'self' data:; object-src 'none'; media-src 'self' data:";
+    more_set_headers "Referrer-Policy: strict-origin-when-cross-origin";
+	more_set_headers "X-Frame-Options: ALLOW";
+    more_set_headers "Pragma: public";
+    more_set_headers "Cache-Control: public, must-revalidate, proxy-revalidate";
 	alias __FINALPATH__/code/front/dist/embed.html;
 	expires 30d;
-    more_set_headers Pragma public;
-    more_set_headers Cache-Control "public, must-revalidate, proxy-revalidate";
-
 }

 location /federation/ {