• Login
  • Register
    • Login Register
    Login
    Username/Email:
    Password:
    Or login with a social network below
  • Forum
  • Website
  • GitHub
  • Status
  • Translation
  • Features
  • Team
  • Rules
  • Help
  • Feeds
User Links
  • Login
  • Register
    • Login Register
    Login
    Username/Email:
    Password:
    Or login with a social network below

    Useful Links Forum Website GitHub Status Translation Features Team Rules Help Feeds
    Jellyfin Forum Support Troubleshooting Networking & Access CSP

     
    • 0 Vote(s) - 0 Average

    CSP

    How to: CSP + Traefik
    niels
    Offline

    Core Team
    Posts: 252
    Threads: 4
    Joined: 2023 Jun
    Reputation: 12
    Country:Netherlands
    #2
    2024-04-29, 07:02 PM
    This is the CSP I've configured on my own server (via nginx) and it works fine with both Android apps:


    content-security-policy: default-src https: data: blob:; style-src 'self' 'unsafe-inline'; script-src 'self' 'unsafe-inline' https://www.gstatic.com https://www.youtube.com blob:; worker-src 'self' blob:; connect-src 'self'; object-src 'none'; frame-ancestors 'self'


    Do note that this strictly disallows custom CSS/images loaded from other origins.
    [Image: GitHub%20Sponsors-grey?logo=github]
    « Next Oldest | Next Newest »

    Users browsing this thread: 1 Guest(s)


    Messages In This Thread
    CSP - by Partition - 2024-04-29, 06:19 PM
    RE: CSP - by niels - 2024-04-29, 07:02 PM
    RE: CSP - by Partition - 2024-04-29, 09:37 PM
    RE: CSP - by niels - 2024-04-30, 05:37 AM
    RE: CSP - by Partition - 2024-04-30, 08:09 AM
    RE: CSP - by niels - 2024-04-30, 08:13 AM
    RE: CSP - by Partition - 2024-04-30, 08:39 AM
    RE: CSP - by niels - 2024-04-30, 08:42 AM

    • View a Printable Version
    • Subscribe to this thread
    Forum Jump:

    Home · Team · Help · Contact
    © Designed by D&D - Powered by MyBB
    L


    Jellyfin

    The Free Software Media System

    Linear Mode
    Threaded Mode