DEVOPS-1898 fixes from Pavel

2025-01-24 14:07:15 +03:00 · 2025-01-24 14:07:15 +03:00 · 44f9351cde
commit 44f9351cde
parent 961ba3b4de
1 changed files with 33 additions and 31 deletions
--- a/config/nginx.conf
+++ b/config/nginx.conf
@ -17,6 +17,7 @@ http {
    sendfile  on;

 	server_tokens off;
+
    gzip  on;

    # text/html doesn't need to be defined there, it's compressed always
@ -34,7 +35,7 @@ http {
    server {
        listen 80 default;

-	access_log /var/log/nginx/access.log nginx_main;
+		access_log /var/log/nginx/access.log nginx_main;
    	error_log /var/log/nginx/error.log error;

    	charset utf-8;
@ -76,43 +77,44 @@ http {
    	  text/xml;

    	location / {
-          root /frontend;
-          index index.html;
-          try_files $uri @index;
+          	root /frontend;
+         	index index.html;
+          	try_files $uri @index;

-            add_header Content-Security-Policy "frame-ancestors 'none'; default-src 'self'; script-src 'self'; style-src 'unsafe-inline' 'self' data:; font-src 'self' data:; img-src 'self' data:;";
+		add_header Content-Security-Policy "frame-ancestors 'none'; default-src 'self'; script-src 'self'; style-src 'unsafe-inline' 'self' data:; font-src 'self' data:; img-src 'self' data:;";

-	  #Application config
-	  location = /src/resources/app-config.json {
-    	    add_header Cache-Control "no-cache";
-    	    expires 0;
-	  }
-	  # Media: images, icons, video, audio, HTC
-	  location ~* \.(?:jpg|jpeg|gif|png|ico|cur|gz|svg|svgz|mp4|mp3|ogg|ogv|webm|htc|woff2|woff|ttf)$ {
-    	    expires 1M;
-    	    access_log off;
-    	    # max-age must be in seconds
-    	    add_header Cache-Control "max-age=2629746, public";
-	  }
-	  # CSS and Javascript
-	  location ~* \.(?:css|js)$ {
-    	    expires 1y;
-    	    access_log off;
-    	    add_header Cache-Control "max-age=31556952, public";
-	  }
-        }
+		#Application config
+		location = /src/resources/app-config.json {
+    			add_header Cache-Control "no-cache";
+    			expires 0;
+		}
+		# Media: images, icons, video, audio, HTC
+		location ~* \.(?:jpg|jpeg|gif|png|ico|cur|gz|svg|svgz|mp4|mp3|ogg|ogv|webm|htc|woff2|woff|ttf)$ {
+    			expires 1M;
+    			access_log off;
+    			# max-age must be in seconds
+    			add_header Cache-Control "max-age=2629746, public";
+		}
+		# CSS and Javascript
+		location ~* \.(?:css|js)$ {
+    			expires 1y;
+    			access_log off;
+    			add_header Cache-Control "max-age=31556952, public";
+		}
+    	}

 	location @index {
-	  root /frontend;
-    	  add_header Cache-Control "no-cache";
-    	  expires 0;
-    	  try_files /index.html =404;
+		root /frontend;
+    		add_header Cache-Control "no-cache";
+    		add_header Content-Security-Policy "frame-ancestors 'none'; default-src 'self'; script-src 'self'; style-src 'unsafe-inline' 'self' data:; font-src 'self' data:; img-src 'self' data:;";
+    		expires 0;
+    		try_files /index.html =404;
 	}

 	location = /health {
-          access_log off;
-          add_header 'Content-Type' 'application/json';
-          return 200 '{"status":"UP"}';
+        	access_log off;
+        	add_header 'Content-Type' 'application/json';
+        	return 200 '{"status":"UP"}';
 	}
    }
 }