Jeff Bradberry
bcf93810ad
Add an nginx location directive for the favicon
...
so that the rewrite rule that adds slashes to the ends of requested
urls doesn't get to it.
2021-05-14 14:00:57 -04:00
Ryan Petrello
3d5f28f790
Introduce a strict Content-Security-Policy
2020-12-08 13:25:46 -05:00
Ryan Petrello
955bb4a44c
allow *.pendo.io as an img-src in our Content Security Policy
2019-09-26 13:12:54 -04:00
Ryan Petrello
d52aa11422
correct CSP header to allow all pendo.io traffic
2019-09-23 09:15:55 -04:00
Jeff Byrnes
987cfed649
Update Content Security Policy to allow websockets
...
Per #4167 a reasonable CSP was put in place, but unfortunately this
broke WebSockets support in Safari.
This is a quick fix to return support immediately. A more secure
implemetation would be beneficial in the longer term, however.
2019-07-05 16:12:27 -04:00
Ryan Petrello
75a72637dd
allow data: images in our Content Security Policy
...
support for custom login logos relies on data:image/*;base64
see: https://github.com/ansible/awx/issues/4253
2019-07-02 11:35:56 -04:00
Ryan Petrello
eacf819caf
add a reasonable default Content Security Policy
...
ideally we'd improve this over time to remove the `unsafe-inline` lines,
but we can't due that today because Angular1 makes use of a lot of
inline <script> and <style> tag generation
see: https://github.com/ansible/awx/issues/2056
2019-06-26 10:46:26 -04:00
Ryan Petrello
6f5259d017
remove the network UI
2018-07-30 11:03:53 -04:00
Ben Thomasson
89cabf7ca0
Fixes timeout when exporting YAML from network UI
...
Exporting YAML on dev envs with honcho and in production environments
would timeout. This was due to daphne handling the export request
in dev but not in production. This fixes network_ui to use uwsgi instead
of daphne to handle the request.
2018-05-02 10:31:36 -04:00
Ben Thomasson
701150bd1a
Adds configuration for the network-ui websocket
...
* Configures NGINX for the network-ui websocket.
* Configures supervisor.conf for network_ui websocket.
2018-03-23 17:00:14 -04:00
Matthew Jones
3892e4e389
Tower -> AWX Tooling Migration
...
* Switching version number scheme and mechanism
* Refactor development tooling towards 'awx' paths and names
* Purging packaging details from Makefile
2017-07-21 17:06:45 -04:00
Matthew Jones
8a9b2fcaea
Implement alternate ports for nginx
...
* This also allows disabling https mode in the nginx configuration
* Reconfigure the development container to not specifically require
https, so the haproxy cluster configuration can work
2017-01-23 14:34:15 -05:00
Wayne Witzel III
2069473534
allow API requests from localhost/127.0.0.1 to be insecure
2016-12-13 11:47:13 -05:00
Wayne Witzel III
19f7d9e8d8
redirect if no forward-slash
2016-12-12 13:25:10 -05:00
Wayne Witzel III
c6e1598b9c
explicitly set long harakiri time to deal with very large inventory deletes
2016-12-12 12:44:05 -05:00
Wayne Witzel III
5f5624c5a3
Update to use Modern values for SSL
2016-12-12 12:42:53 -05:00
Wayne Witzel III
4c8af2a4b8
update uwsgi/nginx dev configuration
2016-12-12 12:42:20 -05:00
Chris Meyers
7050c4e09e
Revert "no one knows wtf the files in this dir a for, so don't serve them"
...
This reverts commit b3cccea70368ba1550366380e583751df1df061b.
2016-10-21 10:04:50 -04:00
Chris Meyers
cbffb23d41
no one knows wtf the files in this dir a for, so don't serve them
2016-10-18 17:27:23 -04:00
Chris Meyers
87ea864466
sendfail syscall bad with crappy filesystems
2016-10-18 17:21:14 -04:00
Chris Meyers
64a15db91b
fix nginx static files using
2016-10-18 15:51:01 -04:00
Wayne Witzel III
99a009b613
fix awx/ui static path
2016-10-18 15:05:05 -04:00
Wayne Witzel III
a27c708127
let nginx serve static files
2016-10-18 14:52:10 -04:00
Chris Meyers
47495b4ea6
fix mime type issues
2016-10-18 14:38:24 -04:00
Chris Meyers
ad2bee1f57
sym link nginx config by popular demand
2016-10-18 14:23:33 -04:00
Wayne Witzel III
e9be93cd70
Update tower_tools image to run nginx
2016-10-18 11:16:38 -04:00
