From: Peter Palfrader Date: Wed, 8 Mar 2017 17:09:56 +0000 (+0100) Subject: Set a CSP for lintian, acked by nthykier X-Git-Url: https://git.adam-barratt.org.uk/?a=commitdiff_plain;h=673e64933019da594d2baf73c0b21593c20be7d9;p=mirror%2Fdsa-puppet.git Set a CSP for lintian, acked by nthykier --- diff --git a/modules/roles/templates/static-mirroring/vhost/static-vhosts-simple.erb b/modules/roles/templates/static-mirroring/vhost/static-vhosts-simple.erb index 659958314..a84e17439 100644 --- a/modules/roles/templates/static-mirroring/vhost/static-vhosts-simple.erb +++ b/modules/roles/templates/static-mirroring/vhost/static-vhosts-simple.erb @@ -147,6 +147,8 @@ RewriteRule ^/source/([a-z0-9-]+)/?$ /${source-map:$1} [L,R,NE] # Versioned request RewriteRule ^/source/([a-z0-9-]+)/([a-zA-Z0-9.+:~-]+)$ /${source-map:$1/$2} [L,R,NE] + + Header always set Content-Security-Policy "default-src 'self';" <%=