Mercurial > repos > other > Puppet
comparison manifests/templates.pp @ 236:4519b727cc4c puppet-3.6
Make Content-Security-Policy cleaner and easier to set
author | IBBoard <dev@ibboard.co.uk> |
---|---|
date | Wed, 18 Dec 2019 21:22:50 +0000 |
parents | e602c5f974ac |
children | 6467e768e353 |
comparison
equal
deleted
inserted
replaced
235:e602c5f974ac | 236:4519b727cc4c |
---|---|
494 #Configure our sites, using templates for the custom fragments where the extra content is too long | 494 #Configure our sites, using templates for the custom fragments where the extra content is too long |
495 include adminsite | 495 include adminsite |
496 website::https::multitld { 'www.ibboard': | 496 website::https::multitld { 'www.ibboard': |
497 custom_fragment => template("private/apache/ibboard.fragment"), | 497 custom_fragment => template("private/apache/ibboard.fragment"), |
498 letsencrypt_name => 'ibboard.co.uk', | 498 letsencrypt_name => 'ibboard.co.uk', |
499 csp_override => { | |
500 "report-uri" => "https://ibboard.report-uri.com/r/d/csp/enforce", | |
501 "default-src" => "'none'", | |
502 "img-src" => "'self' https://live.staticflickr.com/", | |
503 "script-src" => "'self'", | |
504 "style-src" => "'self'", | |
505 "font-src" => "'self'", | |
506 "form-action" => "'self'", | |
507 "connect-src" => "'self'", | |
508 } | |
499 } | 509 } |
500 include hiveworldterrasite | 510 include hiveworldterrasite |
501 include bdstrikesite | 511 include bdstrikesite |
502 include devsite | 512 include devsite |
503 website::https::multitld { 'www.abiknight': | 513 website::https::multitld { 'www.abiknight': |
553 website::https::multitld { 'www.bdstrike': | 563 website::https::multitld { 'www.bdstrike': |
554 docroot_owner => $defaultusers::secondary_user, | 564 docroot_owner => $defaultusers::secondary_user, |
555 docroot_group => 'editors', | 565 docroot_group => 'editors', |
556 letsencrypt_name => 'bdstrike.co.uk', | 566 letsencrypt_name => 'bdstrike.co.uk', |
557 custom_fragment => template("private/apache/bdstrike.fragment"), | 567 custom_fragment => template("private/apache/bdstrike.fragment"), |
568 csp_override => {"frame-ancestors" => "'self'"}, | |
569 csp_report_override => { | |
570 "font-src" => "'self' https://fonts.gstatic.com/", | |
571 "img-src" => "'self' https://secure.gravatar.com/", | |
572 "style-src" => "'self' https://fonts.googleapis.com/" | |
573 }, | |
558 } | 574 } |
559 $aliases = [ | 575 $aliases = [ |
560 'strikecreations.co.uk', | 576 'strikecreations.co.uk', |
561 'strikecreations.com', | 577 'strikecreations.com', |
562 'www.strikecreations.com' ] | 578 'www.strikecreations.com' ] |