Closed Bug 1388808 Opened 7 years ago Closed 7 years ago

Set CSP headers in Nginx

Categories

(Socorro :: Symbols, task)

Product:
Socorro
Component:
Symbols
Type:
task
Priority:
Not set
Severity:
normal

Tracking

(Not tracked)

Status:
RESOLVED FIXED

People

(Reporter: peterbe, Assigned: peterbe)

References

Details

Attachments

(1 file)

Screen Shot 2017-08-10 at 4.21.38 PM.png
1.18 MB, image/png
Details 
Some requests (in particular the frontend) are static assets going straight from Nginx disk back to the client. E.g. / serves the /index.html file.
That means we never go into Django where django_csp sets CSP headers.

Let's move all CSP setting to Nginx.
I'll make a PR on https://github.com/mozilla-services/cloudops-deployment/blob/symbols/projects/symbols/puppet/modules/symbols/templates/http_symbols.conf.erb 
and I'll remove django_csp and its settings.
Assignee: nobody → peterbe
Blocks: 1389194
https://github.com/mozilla-services/cloudops-deployment/commit/489d23f4fa1ba7234e03d53c11c9276e9e494260
Status: NEW → RESOLVED
Closed: 7 years ago
Resolution: --- → FIXED
You need to log in before you can comment on or make changes to this bug.

Attachment

General

Creator:
Created:
Updated:
Size: