Closed Bug 1388808 Opened 8 years ago Closed 8 years ago

Set CSP headers in Nginx

Tracking

(Not tracked)

Status:

RESOLVED FIXED

People

(Reporter: peterbe, Assigned: peterbe)

References

Details

Attachments

(1 file)

Screen Shot 2017-08-10 at 4.21.38 PM.png 8 years ago Peter Bengtsson [:peterbe] 1.18 MB, image/png		Details

Peter Bengtsson [:peterbe]

Assignee

Description

•

8 years ago

Some requests (in particular the frontend) are static assets going straight from Nginx disk back to the client. E.g. / serves the /index.html file. That means we never go into Django where django_csp sets CSP headers. Let's move all CSP setting to Nginx.

Peter Bengtsson [:peterbe]

Assignee

Comment 1

•

8 years ago

I'll make a PR on https://github.com/mozilla-services/cloudops-deployment/blob/symbols/projects/symbols/puppet/modules/symbols/templates/http_symbols.conf.erb and I'll remove django_csp and its settings.

Assignee: nobody → peterbe

Peter Bengtsson [:peterbe]

Assignee

Comment 2

•

8 years ago

PR https://github.com/mozilla-services/cloudops-deployment/pull/1001

Peter Bengtsson [:peterbe]

Assignee

Updated

•

8 years ago

Blocks: 1389194

Peter Bengtsson [:peterbe]

Assignee

Comment 3

•

8 years ago

https://github.com/mozilla-services/cloudops-deployment/commit/489d23f4fa1ba7234e03d53c11c9276e9e494260

Status: NEW → RESOLVED

Closed: 8 years ago

Resolution: --- → FIXED

Peter Bengtsson [:peterbe]

Assignee

Comment 4

•

8 years ago

Attached image Screen Shot 2017-08-10 at 4.21.38 PM.png — Details

Yay!

You need to log in before you can comment on or make changes to this bug.

Bugzilla

Set CSP headers in Nginx

Categories

(Socorro :: Symbols, task)

Tracking

(Not tracked)

People

(Reporter: peterbe, Assigned: peterbe)

References

Details

Crash Data

Security

(public)

User Story

Attachments

(1 file)

Description

Comment 1

Comment 2

Updated

Comment 3

Comment 4

Attachment

General

Description

File Name

Content Type