2024-09-26, 05:41 PM
Your CSP is way off.
Our Apache docs don't have any CSP documentation, but out Nginx documentation does.
You should be able to use our Nginx CSP config directly paste it into your Apache CSP config.
Code:
"default-src https: 'unsafe-eval' 'unsafe-inline'; img-src https: 'unsafe-eval' 'unsafe-inline' 'self' data:; object-src 'none'; frame-ancestors 'self'; connect-src 'self' wss:"Our Apache docs don't have any CSP documentation, but out Nginx documentation does.
Code:
"default-src https: data: blob: ; img-src 'self' https://* ; style-src 'self' 'unsafe-inline'; script-src 'self' 'unsafe-inline' https://www.gstatic.com https://www.youtube.com blob:; worker-src 'self' blob:; connect-src 'self'; object-src 'none'; frame-ancestors 'self'";You should be able to use our Nginx CSP config directly paste it into your Apache CSP config.
Jellyfin 10.10.7 (Docker)
Ubuntu 24.04.2 LTS w/HWE
Intel i3 12100
Intel Arc A380
OS drive - SK Hynix P41 1TB
Storage
4x WD Red Pro 6TB CMR in RAIDZ1
![[Image: GitHub%20Sponsors-grey?logo=github]](https://img.shields.io/badge/GitHub%20Sponsors-grey?logo=github)
Ubuntu 24.04.2 LTS w/HWE
Intel i3 12100
Intel Arc A380
OS drive - SK Hynix P41 1TB
Storage
4x WD Red Pro 6TB CMR in RAIDZ1