viktor/infra
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

update CSP to allow rybbit for some ingresses [ci skip]

Browse source
This commit is contained in:
Viktor Barzin 2025-12-18 10:56:44 +00:00
parent bd60f0faa3
commit f6656aba24
No known key found for this signature in database
GPG key ID: 4056458DBDBF8863
3 changed files with 13 additions and 7 deletions
Download patch file Download diff file Expand all files Collapse all files

5
modules/kubernetes/dbaas/main.tf
View file

@ -435,7 +435,10 @@ module "ingress" {
extra_annotations = {
"nginx.ingress.kubernetes.io/proxy-body-size" : "500m"
}
rybbit_site_id = "942c76b8bd4d"
rybbit_site_id = "942c76b8bd4d"
additional_configuration_snippet = <<-EOF
more_set_headers "Content-Security-Policy: script-src 'self' 'unsafe-inline' 'unsafe-eval' 'wasm-unsafe-eval' https://rybbit.viktorbarzin.me";
EOF
}

15
modules/kubernetes/privatebin/main.tf
View file

@ -89,10 +89,13 @@ resource "kubernetes_service" "privatebin" {
}
module "ingress" {
source = "../ingress_factory"
namespace = "privatebin"
name = "privatebin"
host = "pb"
tls_secret_name = var.tls_secret_name
rybbit_site_id = "3ae810b0476d"
source = "../ingress_factory"
namespace = "privatebin"
name = "privatebin"
host = "pb"
tls_secret_name = var.tls_secret_name
rybbit_site_id = "3ae810b0476d"
additional_configuration_snippet = <<-EOF
more_set_headers "Content-Security-Policy: script-src 'self' 'unsafe-inline' 'unsafe-eval' 'wasm-unsafe-eval' https://rybbit.viktorbarzin.me";
EOF
}

BIN
terraform.tfstate
View file

Binary file not shown.