feld on Nostr: If you use Varnish: sub vcl_backend_response { if (bereq.url ~ "^/proxy/") { set ...
If you use Varnish:
sub vcl_backend_response {
if (bereq.url ~ "^/proxy/") {
set beresp.http.Content-Security-Policy = "sandbox";
}
}
Also clear your MediaProxy cache, because serving the cached variant will have the old header without the CSP rule
Published at
2023-05-26 16:24:44Event JSON
{
"id": "99dd211869ac4040ae406157e34994e3eae85908f8d508116e043e2976443422",
"pubkey": "262d5a8a8201b6e0804087a9d26929935c7ac6682875b13fe24a5314a04a6cbf",
"created_at": 1685118284,
"kind": 1,
"tags": [
[
"p",
"776ed1a547e2693a2c964e4824d6306a11aa364cd9c798f3e1ccd638af3d3725",
"wss://relay.mostr.pub"
],
[
"e",
"0ee298524f96a60baf59ab931a7a7d1574dad71facddca4439f7cac322e38afc",
"wss://relay.mostr.pub",
"reply"
],
[
"mostr",
"https://bikeshed.party/objects/f017c099-f414-4a0a-8c92-b25a683b5578"
]
],
"content": "If you use Varnish:\n\nsub vcl_backend_response {\n if (bereq.url ~ \"^/proxy/\") {\n set beresp.http.Content-Security-Policy = \"sandbox\";\n }\n}\n\n\nAlso clear your MediaProxy cache, because serving the cached variant will have the old header without the CSP rule",
"sig": "c679e70d68c939a3288a535c749c87f123593e963cf138b14f9edc991348e7c8983e546d73fee1e2bc34713a95c0634e5ffcc23fd7f449ce451f58c14944800f"
}
