fankes/beszel
2
0
Fork 0
mirror of https://github.com/fankes/beszel.git synced 2025-10-20 02:09:28 +08:00
Code Issues Actions Packages Projects Releases Wiki Activity

add CSP env var to set a custom Content-Security-Policy header value

Browse Source
This commit is contained in:
Henry Dollman
2024-09-24 15:22:47 -04:00
parent 2d670c585d
commit f350d61ee2
2 changed files with 10 additions and 7 deletions
Download Patch File Download Diff File Expand all files Collapse all files

15
beszel/internal/hub/hub.go
View File

@@ -90,7 +90,7 @@ func (h *Hub) Run() {
return nil return nil
}) })
// serve site // serve web ui
h.app.OnBeforeServe().Add(func(e *core.ServeEvent) error { h.app.OnBeforeServe().Add(func(e *core.ServeEvent) error {
switch isGoRun { switch isGoRun {
case true: case true:
@@ -98,12 +98,17 @@ func (h *Hub) Run() {
Scheme: "http", Scheme: "http",
Host: "localhost:5173", Host: "localhost:5173",
}) })
e.Router.GET("/static/*", apis.StaticDirectoryHandler(os.DirFS("../../site/public/static"), false))
e.Router.Any("/*", echo.WrapHandler(proxy)) e.Router.Any("/*", echo.WrapHandler(proxy))
// e.Router.Any("/", echo.WrapHandler(proxy))
default: default:
e.Router.GET("/static/*", apis.StaticDirectoryHandler(site.Static, false)) csp, cspExists := os.LookupEnv("CSP")
e.Router.Any("/*", apis.StaticDirectoryHandler(site.Dist, true)) e.Router.Any("/*", func(c echo.Context) error {
if cspExists {
c.Response().Header().Del("X-Frame-Options")
c.Response().Header().Set("Content-Security-Policy", csp)
}
indexFallback := !strings.HasPrefix(c.Request().URL.Path, "/static/")
return apis.StaticDirectoryHandler(site.Dist, indexFallback)(c)
})
} }
return nil return nil
}) })

2
beszel/site/embed.go
View File

@@ -11,5 +11,3 @@ import (
var assets embed.FS var assets embed.FS
var Dist = echo.MustSubFS(assets, "dist") var Dist = echo.MustSubFS(assets, "dist")
var Static = echo.MustSubFS(assets, "dist/static")