Side by Side Diff: modules/web/templates/adblockplus.org.conf.erb
Issue 29355242:
Noissue - Blog is no longer using Anwiki styles and scripts, no need to proxy these (Closed)
Base URL: https://hg.adblockplus.org/infrastructure
Patch Set:
Created Sept. 28, 2016, 1:15 p.m.
| Left: | ||
| Right: |
Use n/p to move between diff chunks;
N/P to move between comments.
« no previous file with comments
|
« no previous file
|
no next file »
|
no next file with comments »
Toggle Intra-line Diffs ('i') | Expand Comments ('e') | Collapse Comments ('c') | Hide Comments ('s')
Toggle Intra-line Diffs ('i') | Expand Comments ('e') | Collapse Comments ('c') | Hide Comments ('s')
| OLD | NEW |
|---|---|
| 1 # XSS and clickjacking prevention headers | 1 # XSS and clickjacking prevention headers |
| 2 | 2 |
| 3 set $csp_frame ""; | 3 set $csp_frame ""; |
| 4 if ($uri ~ ^/(:?\w\w(_\w\w)?/)?(?:index|firefox|chrome|opera|android|internet-ex plorer|safari|yandex-browser|maxthon)?$|^/blog/) | 4 if ($uri ~ ^/(:?\w\w(_\w\w)?/)?(?:index|firefox|chrome|opera|android|internet-ex plorer|safari|yandex-browser|maxthon)?$|^/blog/) |
| 5 { | 5 { |
| 6 set $csp_frame "; frame-src www.youtube-nocookie.com;"; | 6 set $csp_frame "; frame-src www.youtube-nocookie.com;"; |
| 7 } | 7 } |
| 8 add_header Content-Security-Policy "default-src 'self'; img-src * data:; style-s rc 'self' 'unsafe-inline'; script-src 'self' 'unsafe-inline' 'unsafe-eval' $csp_ frame"; | 8 add_header Content-Security-Policy "default-src 'self'; img-src * data:; style-s rc 'self' 'unsafe-inline'; script-src 'self' 'unsafe-inline' 'unsafe-eval' $csp_ frame"; |
| 9 add_header X-Frame-Options "sameorigin"; | 9 add_header X-Frame-Options "sameorigin"; |
| 10 | 10 |
| (...skipping 259 matching lines...) Expand 10 before | Expand all | Expand 10 after Loading... | |
| 270 rewrite ^ /$lang/$link$anchor? redirect; | 270 rewrite ^ /$lang/$link$anchor? redirect; |
| 271 } | 271 } |
| 272 | 272 |
| 273 location /devbuilds | 273 location /devbuilds |
| 274 { | 274 { |
| 275 rewrite ^(.*) https://downloads.adblockplus.org$1; | 275 rewrite ^(.*) https://downloads.adblockplus.org$1; |
| 276 } | 276 } |
| 277 | 277 |
| 278 # Locations still served by the legacy server | 278 # Locations still served by the legacy server |
| 279 | 279 |
| 280 location ~ ^(/blog|/releases|/development-builds|/atom|/rss|/category|/section|/ author|/file_download|/images|/textpattern|/default-static|/_override-static)($| /) | 280 location ~ ^(/blog|/releases|/development-builds|/atom|/rss|/category|/section|/ author|/file_download|/images|/textpattern)($|/) |
| 281 { | 281 { |
| 282 try_files $uri @proxied; | 282 try_files $uri @proxied; |
| 283 } | 283 } |
| 284 location /submitEmail | 284 location /submitEmail |
| 285 { | 285 { |
| 286 try_files $uri @proxied; | 286 try_files $uri @proxied; |
| 287 } | 287 } |
| 288 location /verifyEmail | 288 location /verifyEmail |
| 289 { | 289 { |
| 290 # Workaround for MS Outlook's behavior of re-encoding URLs; | 290 # Workaround for MS Outlook's behavior of re-encoding URLs; |
| (...skipping 30 matching lines...) Expand all Loading... | |
| 321 location /403.html | 321 location /403.html |
| 322 { | 322 { |
| 323 try_files $uri @proxied; | 323 try_files $uri @proxied; |
| 324 } | 324 } |
| 325 location @proxied | 325 location @proxied |
| 326 { | 326 { |
| 327 proxy_pass https://server16.adblockplus.org; | 327 proxy_pass https://server16.adblockplus.org; |
| 328 proxy_set_header Host adblockplus.org; | 328 proxy_set_header Host adblockplus.org; |
| 329 proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; | 329 proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; |
| 330 } | 330 } |
| OLD | NEW |
« no previous file with comments
|
« no previous file
|
no next file »
|
no next file with comments »
