Skip to content

Commit 11e1513

Browse files
hyrskyhyrsky
authored
Merge pull request #615 from City-of-Helsinki/update-configuration
Automatic update
2 parents 8e6dbdc + c8a53ee commit 11e1513

3 files changed

Lines changed: 206 additions & 16 deletions

File tree

composer.lock

Lines changed: 19 additions & 7 deletions
Some generated files are not rendered by default. Learn more about customizing how changed files appear on GitHub.

conf/cmi/core.extension.yml

Lines changed: 0 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -48,7 +48,6 @@ module:
4848
helfi_base_content: 0
4949
helfi_calculator: 0
5050
helfi_ckeditor: 0
51-
helfi_csp: 0
5251
helfi_etusivu_entities: 0
5352
helfi_image_styles: 0
5453
helfi_media: 0

conf/cmi/csp.settings.yml

Lines changed: 187 additions & 8 deletions
Original file line numberDiff line numberDiff line change
@@ -1,32 +1,211 @@
11
_core:
22
default_config_hash: 68A3PDsSIoX2q7iFOa2lMdnYkgKgem4uh1_RBxcRVWU
33
report-only:
4-
enable: false
5-
directives: { }
6-
reporting:
7-
plugin: none
8-
enforce:
94
enable: true
105
directives:
6+
base-uri:
7+
base: none
8+
frame-ancestors:
9+
base: self
1110
default-src:
1211
base: self
12+
connect-src:
13+
base: self
14+
sources:
15+
- 'https://www.youtube-nocookie.com'
16+
- 'https://coh-chat-app-prod.ow6i4n9pdzm.eu-de.codeengine.appdomain.cloud'
17+
- 'https://*.hel.fi'
18+
- 'https://coh-chat-app-test.mo1wrhhyog0.eu-de.codeengine.appdomain.cloud'
19+
- 'https://data.reactandshare.com'
20+
- 'https://webanalytics.digiaiiris.com'
21+
- 'https://*.askem.com'
22+
- 'https://*.siteimprove.com'
23+
- 'https://connect.facebook.net'
24+
- 'https://hel.humany.net'
25+
- 'https://wds.ace.teliacompany.com'
26+
- 'https://chat.ace.teliacompany.net'
27+
- 'https://api.ace.teliacompany.net'
1328
img-src:
1429
base: any
30+
sources:
31+
- 'data:'
32+
- '*.blob.core.windows.net'
33+
- 'https://coh-chat-app-prod.ow6i4n9pdzm.eu-de.codeengine.appdomain.cloud'
34+
- 'https://*.hel.fi'
35+
- 'https://coh-chat-app-test.mo1wrhhyog0.eu-de.codeengine.appdomain.cloud'
36+
- 'https://data.reactandshare.com'
1537
script-src:
1638
base: self
1739
flags:
1840
- report-sample
1941
- unsafe-inline
2042
- unsafe-eval
2143
- wasm-unsafe-eval
44+
sources:
45+
- 'https://coh-chat-app-prod.ow6i4n9pdzm.eu-de.codeengine.appdomain.cloud'
46+
- 'https://*.hel.fi'
47+
- 'https://coh-chat-app-test.mo1wrhhyog0.eu-de.codeengine.appdomain.cloud'
48+
- 'https://cdn.reactandshare.com'
49+
- 'https://data.reactandshare.com'
50+
- 'https://*.askem.com'
51+
- 'https://webanalytics.digiaiiris.com'
52+
- 'https://connect.facebook.net'
53+
- 'https://wds.ace.teliacompany.com'
54+
- 'https://e.infogram.com'
2255
style-src:
2356
base: self
2457
flags:
2558
- report-sample
2659
- unsafe-inline
27-
base-uri:
28-
base: none
29-
frame-ancestors:
60+
sources:
61+
- 'https://coh-chat-app-prod.ow6i4n9pdzm.eu-de.codeengine.appdomain.cloud'
62+
- 'https://*.hel.fi'
63+
- 'https://coh-chat-app-test.mo1wrhhyog0.eu-de.codeengine.appdomain.cloud'
64+
- 'https://hel.humany.net'
65+
- 'https://wds.ace.teliacompany.com'
66+
font-src:
67+
base: self
68+
sources:
69+
- 'https://coh-chat-app-prod.ow6i4n9pdzm.eu-de.codeengine.appdomain.cloud'
70+
- 'https://*.hel.fi'
71+
- 'https://coh-chat-app-test.mo1wrhhyog0.eu-de.codeengine.appdomain.cloud'
72+
- 'https://hel.humany.net'
73+
- 'https://makasiini.hel.ninja'
74+
- 'https://ace-knowledge-cdn.teliacompany.net'
75+
frame-src:
76+
base: self
77+
sources:
78+
- palvelukartta.hel.fi
79+
- 'https://coh-chat-app-prod.ow6i4n9pdzm.eu-de.codeengine.appdomain.cloud'
80+
- 'https://*.hel.fi'
81+
- 'https://coh-chat-app-test.mo1wrhhyog0.eu-de.codeengine.appdomain.cloud'
82+
- 'https://*.siteimprove.com'
83+
- 'https://*.userneeds.com'
84+
- 'https://agreeable-island-03e85b803.azurestaticapps.net'
85+
- 'https://*.hotjar.com'
86+
- 'https://coh-chat-app-ibm.eu-de.mybluemix.net'
87+
- 'https://coh-chat-app-prod-ibm.eu-de.mybluemix.net'
88+
- 'https://suite.icareus.com'
89+
- 'https://*.helsinkikanava.fi'
90+
- 'https://*.youtube.com'
91+
- 'https://*.youtu.be'
92+
- 'https://*.facebook.com'
93+
- 'https://*.twitter.com'
94+
- 'https://*.linkedin.com'
95+
- 'https://*.readspeaker.com'
96+
- 'https://*.vimeo.com'
97+
- 'https://*.google.com'
98+
- 'https://*.siteimproveanalytics.com'
99+
- 'https://*.snoobi.com'
100+
- 'https://*.dreambroker.com'
101+
- 'https://youtu.be'
102+
- 'https://dreambroker.com'
103+
- 'https://pollev.com'
104+
- 'https://e.infogram.com'
105+
- 'https://infogram.com'
106+
- 'https://tyoterveys-helsinki-pv.mail-eur.net'
107+
- 'https://walls.io'
108+
- 'https://*.youtube-nocookie.com'
109+
- 'https://*.flockler.com'
110+
- 'https://*.lightwidget.com'
111+
- 'https://hel-thk-botti.kuurahealth.com'
112+
- 'https://*.giosg.com'
113+
- 'https://*.giosgusercontent.com'
114+
- 'https://helfi.fi1.frosmo.com'
115+
- 'https://survey.feedbackly.com'
116+
- 'https://survey.userneeds.com'
117+
- 'https://*.powerbi.com'
118+
- 'https://coh-chat-app-test.eu-de.mybluemix.net'
119+
- 'https://coh-chat-app-dev.eu-de.mybluemix.net'
120+
- 'https://coh-chat-app-prod.eu-de.mybluemix.net'
121+
- 'https://hkp.maanmittauslaitos.fi'
122+
- 'https://reittiopas.hsl.fi'
123+
- 'https://players.icareus.com'
124+
- 'https://wds.ace.teliacompany.com'
125+
- 'https://events.icareus.com'
126+
object-src:
127+
base: self
128+
sources:
129+
- palvelukartta.hel.fi
130+
- 'https://*.youtube-nocookie.com'
131+
- 'https://*.youtube.com'
132+
- 'https://*.youtu.be'
133+
- 'https://*.vimeo.com'
134+
- 'https://suite.icareus.com'
135+
- 'https://players.icareus.com'
136+
- 'https://events.icareus.com'
137+
- 'https://*.helsinkikanava.fi'
138+
media-src:
139+
base: self
140+
sources:
141+
- 'data:'
142+
reporting:
143+
plugin: none
144+
enforce:
145+
enable: true
146+
directives:
147+
object-src:
148+
base: self
149+
sources:
150+
- palvelukartta.hel.fi
151+
- 'https://*.youtube-nocookie.com'
152+
- 'https://*.youtube.com'
153+
- 'https://*.youtu.be'
154+
- 'https://*.vimeo.com'
155+
- 'https://suite.icareus.com'
156+
- 'https://players.icareus.com'
157+
- 'https://events.icareus.com'
158+
- 'https://*.helsinkikanava.fi'
159+
frame-src:
30160
base: self
161+
sources:
162+
- palvelukartta.hel.fi
163+
- 'https://coh-chat-app-prod.ow6i4n9pdzm.eu-de.codeengine.appdomain.cloud'
164+
- 'https://*.hel.fi'
165+
- 'https://coh-chat-app-test.mo1wrhhyog0.eu-de.codeengine.appdomain.cloud'
166+
- 'https://*.siteimprove.com'
167+
- 'https://*.userneeds.com'
168+
- 'https://agreeable-island-03e85b803.azurestaticapps.net'
169+
- 'https://*.hotjar.com'
170+
- 'https://coh-chat-app-ibm.eu-de.mybluemix.net'
171+
- 'https://coh-chat-app-prod-ibm.eu-de.mybluemix.net'
172+
- 'https://suite.icareus.com'
173+
- 'https://*.helsinkikanava.fi'
174+
- 'https://*.youtube.com'
175+
- 'https://*.youtu.be'
176+
- 'https://*.facebook.com'
177+
- 'https://*.twitter.com'
178+
- 'https://*.linkedin.com'
179+
- 'https://*.readspeaker.com'
180+
- 'https://*.vimeo.com'
181+
- 'https://*.google.com'
182+
- 'https://*.siteimproveanalytics.com'
183+
- 'https://*.snoobi.com'
184+
- 'https://*.dreambroker.com'
185+
- 'https://youtu.be'
186+
- 'https://dreambroker.com'
187+
- 'https://pollev.com'
188+
- 'https://e.infogram.com'
189+
- 'https://infogram.com'
190+
- 'https://tyoterveys-helsinki-pv.mail-eur.net'
191+
- 'https://walls.io'
192+
- 'https://*.youtube-nocookie.com'
193+
- 'https://*.flockler.com'
194+
- 'https://*.lightwidget.com'
195+
- 'https://hel-thk-botti.kuurahealth.com'
196+
- 'https://*.giosg.com'
197+
- 'https://*.giosgusercontent.com'
198+
- 'https://helfi.fi1.frosmo.com'
199+
- 'https://survey.feedbackly.com'
200+
- 'https://survey.userneeds.com'
201+
- 'https://*.powerbi.com'
202+
- 'https://coh-chat-app-test.eu-de.mybluemix.net'
203+
- 'https://coh-chat-app-dev.eu-de.mybluemix.net'
204+
- 'https://coh-chat-app-prod.eu-de.mybluemix.net'
205+
- 'https://hkp.maanmittauslaitos.fi'
206+
- 'https://reittiopas.hsl.fi'
207+
- 'https://players.icareus.com'
208+
- 'https://wds.ace.teliacompany.com'
209+
- 'https://events.icareus.com'
31210
reporting:
32211
plugin: raven

0 commit comments

Comments
 (0)