radziel/spotlightcam
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

fix(nginx): allow Vite dev dependencies in development mode

Browse Source 
- Changed regex /\. to /\.(git|svn|htaccess|htpasswd|env) to allow .vite directory
- Removed node_modules from nginx blocked paths for Vite dependency serving
- Set VITE_ALLOWED_HOSTS=all in development mode for Docker networking

Fixes issue where nginx was blocking Vite's pre-bundled dependencies in
/node_modules/.vite/deps/, causing 404 errors for React and other imports.
This commit is contained in:
Radosław Gierwiało
2025-12-03 19:21:52 +01:00
parent f6fd983c68
commit d8d04adfc6
2 changed files with 6 additions and 4 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
docker-compose.yml
View File

@@ -63,7 +63,7 @@ services:
environment: environment:
- NODE_ENV=development - NODE_ENV=development
- VITE_HOST=0.0.0.0 - VITE_HOST=0.0.0.0
- VITE_ALLOWED_HOSTS=${VITE_ALLOWED_HOSTS:-localhost,spotlight.cam,.spotlight.cam} - VITE_ALLOWED_HOSTS=${VITE_ALLOWED_HOSTS:-all}
stdin_open: true stdin_open: true
tty: true tty: true
command: npm run dev command: npm run dev

8
nginx/conf.d/default.conf
View File

@@ -22,8 +22,8 @@ server {
# Content Security Policy (permissive for dev, tighten for production) # Content Security Policy (permissive for dev, tighten for production)
add_header Content-Security-Policy "default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval'; style-src 'self' 'unsafe-inline'; img-src 'self' data: https:; font-src 'self' data:; connect-src 'self' ws: wss:; media-src 'self' blob:; object-src 'none'; base-uri 'self'; form-action 'self';" always; add_header Content-Security-Policy "default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval'; style-src 'self' 'unsafe-inline'; img-src 'self' data: https:; font-src 'self' data:; connect-src 'self' ws: wss:; media-src 'self' blob:; object-src 'none'; base-uri 'self'; form-action 'self';" always;
# Block access to sensitive files and directories # Block access to hidden files and directories (but allow .vite for development)
location ~ /\. { location ~ /\.(git|svn|htaccess|htpasswd|env) {
deny all; deny all;
access_log off; access_log off;
log_not_found off; log_not_found off;
@@ -37,7 +37,9 @@ server {
return 404; return 404;
} }
location ~ ^/(node_modules|\.git|\.vscode|\.idea|docker-compose|Dockerfile|package\.json|package-lock\.json|yarn\.lock|pnpm-lock\.yaml|\.npmrc|\.yarnrc|tsconfig\.json|\.eslintrc|\.prettierrc|prisma|\.env.*|\.db|\.sqlite|\.sql|backup|backups|dumps|logs)/? { # DEV MODE: node_modules allowed for Vite dependencies
# Block access to sensitive files and directories (excluding node_modules for Vite)
location ~ ^/(\.git|\.vscode|\.idea|docker-compose|Dockerfile|package\.json|package-lock\.json|yarn\.lock|pnpm-lock\.yaml|\.npmrc|\.yarnrc|tsconfig\.json|\.eslintrc|\.prettierrc|prisma|\.env.*|\.db|\.sqlite|\.sql|backup|backups|dumps|logs)/? {
deny all; deny all;
access_log off; access_log off;
log_not_found off; log_not_found off;