Skip to content

Commit ab7d72f

Browse files
AlexErrantAlexErrant
committed
add CSP to CF pages projects
1 parent 971bdc4 commit ab7d72f

File tree

7 files changed

+7
-2
lines changed

7 files changed

+7
-2
lines changed

app-ugc/buildHeaders.ts

Lines changed: 1 addition & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -5,6 +5,7 @@ const contents = `/*
55
Cross-Origin-Embedder-Policy: require-corp
66
Cross-Origin-Opener-Policy: same-origin
77
Cross-Origin-Resource-Policy: cross-origin
8+
Content-Security-Policy: default-src 'self'; style-src 'self' 'unsafe-inline'; frame-ancestors ${process.env.VITE_APP_ORIGIN};
89
${hstsName}: ${hstsValue}`
910

1011
fs.writeFile('./dist/_headers', contents, (err) => {

app-ugc/deploy.sh

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -4,6 +4,6 @@
44
set -euo pipefail # https://stackoverflow.com/a/2871034
55
# set -x
66

7-
npx tsx --tsconfig ./tsconfig.deploy.json buildHeaders.ts
87
[[ -f "env.sh" ]] && source env.sh
8+
npx tsx --tsconfig ./tsconfig.deploy.json buildHeaders.ts
99
npx wrangler pages deploy ./dist --project-name app-ugc --branch main

app-ugc/example.env.sh

Lines changed: 1 addition & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -1 +1,2 @@
1+
export VITE_APP_ORIGIN=$VITE_PRODUCTION_APP_ORIGIN
12
export CLOUDFLARE_ACCOUNT_ID=$cloudflareAccountId

app/buildHeaders.ts

Lines changed: 1 addition & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -5,6 +5,7 @@ const contents = `/*
55
Cross-Origin-Embedder-Policy: require-corp
66
Cross-Origin-Opener-Policy: same-origin
77
Cross-Origin-Resource-Policy: cross-origin
8+
Content-Security-Policy: default-src 'self'; style-src 'self' 'unsafe-inline'; frame-ancestors 'none';
89
${hstsName}: ${hstsValue}`
910

1011
fs.writeFile('./dist/_headers', contents, (err) => {

hub-ugc/buildHeaders.ts

Lines changed: 1 addition & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -5,6 +5,7 @@ const contents = `/*
55
Cross-Origin-Embedder-Policy: require-corp
66
Cross-Origin-Opener-Policy: same-origin
77
Cross-Origin-Resource-Policy: cross-origin
8+
Content-Security-Policy: default-src 'self'; style-src 'self' 'unsafe-inline'; frame-ancestors ${process.env.VITE_HUB_ORIGIN};
89
${hstsName}: ${hstsValue}`
910

1011
fs.writeFile('./dist/_headers', contents, (err) => {

hub-ugc/deploy.sh

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -4,6 +4,6 @@
44
set -euo pipefail # https://stackoverflow.com/a/2871034
55
# set -x
66

7-
npx tsx --tsconfig ./tsconfig.deploy.json buildHeaders.ts
87
[[ -f "env.sh" ]] && source env.sh
8+
npx tsx --tsconfig ./tsconfig.deploy.json buildHeaders.ts
99
npx wrangler pages deploy ./dist --project-name hub-ugc --branch main

hub-ugc/example.env.sh

Lines changed: 1 addition & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -1 +1,2 @@
1+
export VITE_HUB_ORIGIN=$VITE_PRODUCTION_HUB_ORIGIN
12
export CLOUDFLARE_ACCOUNT_ID=$cloudflareAccountId

0 commit comments

Comments
 (0)