ChK/appRobotVideoControls
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

nix

Browse Source
This commit is contained in:
ChK
2026-05-08 21:18:02 +02:00
parent 929b738bcc
commit 7e7647af0d
1 changed files with 6 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

7
server.js
View File

@@ -50,11 +50,16 @@ app.use(
"connect-src": ["'self'"], // same-origin WSS
"object-src": ["'none'"],
"base-uri": ["'self'"],
"frame-ancestors": ["'self'"]
"frame-ancestors": ["'self'", "https://server.schooltech.ch", "https://robotvideo.server.schooltech.ch"]
}
},
})
);
app.use((req, res, next) => {
res.setHeader('Content-Security-Policy', "frame-ancestors 'self' https://server.schooltech.ch");
res.setHeader('X-Frame-Options', 'ALLOW-FROM https://server.schooltech.ch');
next();
});
app.use(express.static(path.join(__dirname, 'public'), { etag: true, maxAge: '1h' }));
app.get('/health', (_req, res) => res.status(200).send('ok'));