radziel/spotlightcam
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
master
spotlightcam/nginx
History
Radosław Gierwiało e905c78f52 fix(csp): remove duplicate CSP from nginx and allow Cloudflare Turnstile 
- Updated backend/src/app.js to allow Cloudflare domains in CSP
  - Added https://challenges.cloudflare.com to scriptSrc
  - Added https://challenges.cloudflare.com to connectSrc
  - Added https://challenges.cloudflare.com to frameSrc
- Removed duplicate CSP from nginx/conf.d.prod/default.conf
  - CSP is now managed only by backend Helmet middleware
  - Prevents conflicting security policies
2025-12-06 17:28:12 +01:00
..
conf.d
feat(security): implement Cloudflare Turnstile CAPTCHA on contact form
2025-12-05 18:08:05 +01:00
conf.d.prod
fix(csp): remove duplicate CSP from nginx and allow Cloudflare Turnstile
2025-12-06 17:28:12 +01:00
nginx.conf
feat: initial project setup with frontend mockup
2025-11-12 17:50:44 +01:00