fix: ingress customHeaders

devthejo · devthejo · commit ba97dc24641e · 2025-03-11T10:09:27.000+01:00
diff --git a/.kontinuous/values.yaml b/.kontinuous/values.yaml
@@ -62,12 +62,11 @@ form:
         name: app-configmap
   probesPath: /api/healthz
   ingress:
-    annotations:
-      nginx.ingress.kubernetes.io/configuration-snippet: |
-        more_set_headers "Content-Security-Policy: default-src 'none'; manifest-src 'self' https://*.gouv.fr; connect-src 'self' https://*.gouv.fr; media-src 'self'; font-src 'self' data:; img-src 'self' data:; script-src 'self' https://*.gouv.fr 'unsafe-inline'; frame-src 'self' https://*.gouv.fr; style-src 'self' 'unsafe-inline'";
-        more_set_headers "X-Frame-Options: deny";
-        more_set_headers "X-XSS-Protection: 1; mode=block";
-        more_set_headers "X-Content-Type-Options: nosniff";
+    customHeaders:
+      "Content-Security-Policy": "default-src 'none'; manifest-src 'self' https://*.gouv.fr; connect-src 'self' https://*.gouv.fr; media-src 'self'; font-src 'self' data:; img-src 'self' data:; script-src 'self' https://*.gouv.fr 'unsafe-inline'; frame-src 'self' https://*.gouv.fr; style-src 'self' 'unsafe-inline'"
+      "X-Frame-Options": "deny"
+      "X-XSS-Protection": "1; mode=block"
+      "X-Content-Type-Options": "nosniff"
 
 pg:
   ~chart: pg
