diff options
| author | Chocobozzz <me@florianbigard.com> | 2019-02-21 16:27:32 +0100 |
|---|---|---|
| committer | Chocobozzz <me@florianbigard.com> | 2019-02-21 16:28:53 +0100 |
| commit | 539d3f4faa1c1d2dbc68bb3ac0ba3549252e0f2a (patch) | |
| tree | 9bddd2ba539a49b3741fbd2ff3a2127e41a40268 /config | |
| parent | c8000975d361fae166a6ebecac5005238e14d4c9 (diff) | |
| download | PeerTube-539d3f4faa1c1d2dbc68bb3ac0ba3549252e0f2a.tar.gz PeerTube-539d3f4faa1c1d2dbc68bb3ac0ba3549252e0f2a.tar.zst PeerTube-539d3f4faa1c1d2dbc68bb3ac0ba3549252e0f2a.zip | |
BREAKING: update CSP configuration
Disable it by default and add ability to specify a custom report uri
Diffstat (limited to 'config')
| -rw-r--r-- | config/default.yaml | 7 | ||||
| -rw-r--r-- | config/production.yaml.example | 6 |
2 files changed, 11 insertions, 2 deletions
diff --git a/config/default.yaml b/config/default.yaml index 1f6046a1b..6c339e66d 100644 --- a/config/default.yaml +++ b/config/default.yaml | |||
| @@ -96,6 +96,11 @@ redundancy: | |||
| 96 | # strategy: 'recently-added' # Cache recently added videos | 96 | # strategy: 'recently-added' # Cache recently added videos |
| 97 | # min_views: 10 # Having at least x views | 97 | # min_views: 10 # Having at least x views |
| 98 | 98 | ||
| 99 | csp: | ||
| 100 | enabled: false | ||
| 101 | report_only: true # CSP directives are still being tested, so disable the report only mode at your own risk! | ||
| 102 | report_uri: | ||
| 103 | |||
| 99 | cache: | 104 | cache: |
| 100 | previews: | 105 | previews: |
| 101 | size: 500 # Max number of previews you want to cache | 106 | size: 500 # Max number of previews you want to cache |
| @@ -182,8 +187,6 @@ instance: | |||
| 182 | "# If you would like to report a security issue\n# you may report it to:\nContact: https://github.com/Chocobozzz/PeerTube/blob/develop/SECURITY.md\nContact: mailto:" | 187 | "# If you would like to report a security issue\n# you may report it to:\nContact: https://github.com/Chocobozzz/PeerTube/blob/develop/SECURITY.md\nContact: mailto:" |
| 183 | 188 | ||
| 184 | services: | 189 | services: |
| 185 | # You can provide a reporting endpoint for Content Security Policy violations | ||
| 186 | csp-logger: | ||
| 187 | # Cards configuration to format video in Twitter | 190 | # Cards configuration to format video in Twitter |
| 188 | twitter: | 191 | twitter: |
| 189 | username: '@Chocobozzz' # Indicates the Twitter account for the website or platform on which the content was published | 192 | username: '@Chocobozzz' # Indicates the Twitter account for the website or platform on which the content was published |
diff --git a/config/production.yaml.example b/config/production.yaml.example index ae8fb2d51..c227d5fcc 100644 --- a/config/production.yaml.example +++ b/config/production.yaml.example | |||
| @@ -97,6 +97,12 @@ redundancy: | |||
| 97 | # strategy: 'recently-added' # Cache recently added videos | 97 | # strategy: 'recently-added' # Cache recently added videos |
| 98 | # min_views: 10 # Having at least x views | 98 | # min_views: 10 # Having at least x views |
| 99 | 99 | ||
| 100 | csp: | ||
| 101 | enabled: false | ||
| 102 | report_only: true # CSP directives are still being tested, so disable the report only mode at your own risk! | ||
| 103 | report_uri: | ||
| 104 | |||
| 105 | |||
| 100 | ############################################################################### | 106 | ############################################################################### |
| 101 | # | 107 | # |
| 102 | # From this point, all the following keys can be overridden by the web interface | 108 | # From this point, all the following keys can be overridden by the web interface |