fix nginx csp (#489)

2026-01-28 02:18:50 +00:00 · 2022-03-02 19:16:28 -08:00
parent 91d2c294dc
commit e89e223700
1 changed files with 1 additions and 1 deletions
--- a/omnibus/cookbooks/firezone/templates/nginx.conf.erb
+++ b/omnibus/cookbooks/firezone/templates/nginx.conf.erb
@@ -89,7 +89,7 @@ http {
  add_header X-XSS-Protection        "1; mode=block" always;
  add_header X-Content-Type-Options  "nosniff" always;
  add_header Referrer-Policy         "no-referrer-when-downgrade" always;
-  add_header Content-Security-Policy "default-src 'self' http: https: data: blob: 'unsafe-inline'; frame-ancestors 'self';" always;
+  add_header Content-Security-Policy "default-src 'self' ws: wss: http: https: data: blob: 'unsafe-inline'; frame-ancestors 'self';" always;
  add_header Permissions-Policy      "interest-cohort=()" always;
  add_header Cache-Control           "public, max-age=2700";