From e89e223700972e23eda2ffb13381f55ed3f3ce57 Mon Sep 17 00:00:00 2001
From: Jamil <jamilbk@users.noreply.github.com>
Date: Wed, 2 Mar 2022 19:16:28 -0800
Subject: [PATCH] fix nginx csp (#489)

---
 omnibus/cookbooks/firezone/templates/nginx.conf.erb | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/omnibus/cookbooks/firezone/templates/nginx.conf.erb b/omnibus/cookbooks/firezone/templates/nginx.conf.erb
index b761d165b..fb0be6a60 100644
--- a/omnibus/cookbooks/firezone/templates/nginx.conf.erb
+++ b/omnibus/cookbooks/firezone/templates/nginx.conf.erb
@@ -89,7 +89,7 @@ http {
   add_header X-XSS-Protection        "1; mode=block" always;
   add_header X-Content-Type-Options  "nosniff" always;
   add_header Referrer-Policy         "no-referrer-when-downgrade" always;
-  add_header Content-Security-Policy "default-src 'self' http: https: data: blob: 'unsafe-inline'; frame-ancestors 'self';" always;
+  add_header Content-Security-Policy "default-src 'self' ws: wss: http: https: data: blob: 'unsafe-inline'; frame-ancestors 'self';" always;
   add_header Permissions-Policy      "interest-cohort=()" always;
   add_header Cache-Control           "public, max-age=2700";