updated ingress for Content-Security-Policy mod

nextcloud-system/nextcloud.yaml

@@ -760,8 +760,11 @@ metadata:
     external-dns.alpha.kubernetes.io/hostname: nextcloud.home,dooplex.hu
     nginx.ingress.kubernetes.io/proxy-body-size: "0"
     nginx.ingress.kubernetes.io/ssl-redirect: "true"
-  name: nextcloud
-  namespace: nextcloud-system
+    nginx.ingress.kubernetes.io/configuration-snippet: |
+      proxy_hide_header Content-Security-Policy;
+      add_header Content-Security-Policy "default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' blob:; style-src 'self' 'unsafe-inline'; img-src 'self' data: blob: https:; font-src 'self' data:; connect-src 'self' https:; media-src 'self'; frame-ancestors 'self' https://home.dooplex.hu https://orsi.dooplex.hu https://kisfenyo.dooplex.hu;" always;
+      name: nextcloud
+      namespace: nextcloud-system
 spec:
   ingressClassName: nginx-internal
   rules: