mirror/AdventureLog
1
0
Fork 0
mirror of https://github.com/seanmorley15/AdventureLog.git synced 2025-12-23 22:58:17 -05:00
Code Issues Packages Projects Releases Wiki Activity

fix: update location blocks for protected media in nginx configuration

Browse Source
This commit is contained in:
Sean Morley
2025-06-01 12:47:08 -04:00
parent c159e176b3
commit f95afdc35c
1 changed files with 4 additions and 6 deletions
Download Patch File Download Diff File Expand all files Collapse all files

10
backend/nginx.conf
View File

@@ -30,10 +30,9 @@ http {
}
# Special handling for PDF files with CSP headers
location ~ ^/protectedMedia/.*\.pdf$ {
location ~ ^/protectedMedia/(.*)\.pdf$ {
internal;
alias /code/media/;
try_files $uri =404;
alias /code/media/$1.pdf;
add_header Content-Security-Policy "default-src 'self'; script-src 'none'; object-src 'none'; base-uri 'none'" always;
add_header X-Content-Type-Options nosniff always;
add_header X-Frame-Options SAMEORIGIN always;
@@ -41,10 +40,9 @@ http {
}
# General protected media files (non-PDF)
location /protectedMedia/ {
location ~ ^/protectedMedia/(.*)$ {
internal;
alias /code/media/;
try_files $uri =404;
alias /code/media/$1;
}
}
}