File tree Expand file tree Collapse file tree
Expand file tree Collapse file tree Original file line number Diff line number Diff line change @@ -32,8 +32,13 @@ and `/var/www/southeastssa`.
3232Note: these must be built with
3333
3434```
35- SITE_URL=https://localhost:8080/southeastblueprint
36- SITE_ROOT_PATH=southeastblueprint
35+ PUBLIC_MAPBOX_TOKEN=<token>
36+ PUBLIC_API_TOKEN=<token>
37+ PUBLIC_SENTRY_DSN=<DSN>
38+ PUBLIC_GOOGLE_ANALYTICS_ID=<id>
39+ PUBLIC_API_HOST=<API host>
40+ PUBLIC_TILE_HOST=<tile host>
41+ PUBLIC_CONTACT_EMAIL=<contact email>
3742```
3843
3944and
Load Diff This file was deleted.
Load Diff This file was deleted.
Load Diff This file was deleted.
Original file line number Diff line number Diff line change @@ -12,8 +12,7 @@ ifwaz-sebp-prod.fws.doi.net {
1212 route {
1313 # common headers
1414 header X-Frame-Options "DENY"
15- header Content-Security-Policy "connect-src 'self' *.googletagmanager.com *.google-analytics.com *.mapbox.com *.sentry.io; img-src 'self' *.mapbox.com data: blob:; media-src 'self' *.mapbox.com; worker-src 'self' blob:; style-src 'unsafe-inline' 'self' *.mapbox.com; script-src 'unsafe-inline' 'self' *.googletagmanager.com *.mapbox.com *.sentry.io blob:; child-src 'self' blob:;frame-ancestors 'none'; base-uri 'self'; form-action 'self'; object-src 'none';font-src 'self'; manifest-src 'self';"
16- header X-Content-Type-Options nosniff
15+ header Content-Security-Policy "connect-src 'self' *.googletagmanager.com *.google-analytics.com *.mapbox.com *.sentry.io; img-src 'self' *.mapbox.com data: blob:; media-src 'self' *.mapbox.com; worker-src 'self' blob:; style-src 'unsafe-inline' 'self' *.mapbox.com; script-src 'unsafe-inline' 'self' *.googletagmanager.com *.mapbox.com *.sentry.io blob:; child-src 'self' blob:;frame-ancestors 'none'; base-uri 'self'; form-action 'self'; object-src 'none';font-src 'self' data:; manifest-src 'self';"
1716 header Referrer-Policy "strict-origin"
1817 header Cross-Origin-Resource-Policy "cross-origin"
1918 header Cross-Origin-Embedder-Policy "require-corp"
@@ -29,6 +28,9 @@ ifwaz-sebp-prod.fws.doi.net {
2928 reverse_proxy mbtileserver:8000
3029 }
3130
31+ # this header is already handled by mbtileserver
32+ header X-Content-Type-Options nosniff
33+
3234 encode zstd gzip
3335
3436 route /southeastblueprint/api/* {
Load Diff This file was deleted.
Load Diff This file was deleted.
Load Diff This file was deleted.
Original file line number Diff line number Diff line change @@ -12,8 +12,8 @@ ifwaz-sebp-test.fws.doi.net {
1212 route {
1313 # common headers
1414 header X-Frame-Options "DENY"
15- header Content-Security-Policy "connect-src 'self' *.googletagmanager.com *.google-analytics.com *.mapbox.com *.sentry.io; img-src 'self' *.mapbox.com data: blob:; media-src 'self' *.mapbox.com; worker-src 'self' blob:; style-src 'unsafe-inline' 'self' *.mapbox.com; script-src 'unsafe-inline' 'self' *.googletagmanager.com *.mapbox.com *.sentry.io blob:; child-src 'self' blob:;frame-ancestors 'none'; base-uri 'self'; form-action 'self'; object-src 'none';font-src 'self'; manifest-src 'self';"
16- header X-Content-Type-Options nosniff
15+ header Content-Security-Policy "connect-src 'self' *.googletagmanager.com *.google-analytics.com *.mapbox.com *.sentry.io; img-src 'self' *.mapbox.com data: blob:; media-src 'self' *.mapbox.com; worker-src 'self' blob:; style-src 'unsafe-inline' 'self' *.mapbox.com; script-src 'unsafe-inline' 'self' *.googletagmanager.com *.mapbox.com *.sentry.io blob:; child-src 'self' blob:;frame-ancestors 'none'; base-uri 'self'; form-action 'self'; object-src 'none';font-src 'self' data: ; manifest-src 'self';"
16+
1717 header Referrer-Policy "strict-origin"
1818 header Cross-Origin-Resource-Policy "cross-origin"
1919 header Cross-Origin-Embedder-Policy "require-corp"
@@ -29,6 +29,9 @@ ifwaz-sebp-test.fws.doi.net {
2929 reverse_proxy mbtileserver:8000
3030 }
3131
32+ # this header is already handled by mbtileserver
33+ header X-Content-Type-Options nosniff
34+
3235 encode zstd gzip
3336
3437 route /test-southeastblueprint/api/* {
@@ -41,6 +44,8 @@ ifwaz-sebp-test.fws.doi.net {
4144 reverse_proxy ssa-api:5000
4245 }
4346
47+
48+
4449 # most files can be cached indefinitely, they are rebuilt with new names each time
4550 @cached_files {
4651 path *.jpg *.jpeg *.png *.gif *.ico *.webp *.svg *.css *.js *.woff *.woff2 */stati c/*
Original file line number Diff line number Diff line change @@ -149,19 +149,19 @@ source ~/secas-docker/deploy/staging/.env
149149Create ` ~/secas-blueprint/ui/.env.production ` with the following:
150150
151151``` bash
152- GATSBY_MAPBOX_API_TOKEN=< mapbox token>
153- GATSBY_SENTRY_DSN=< dsn>
154- GATSBY_GOOGLE_ANALYTICS_ID=< id>
155- GATSBY_API_TOKEN=< api token>
156-
157- SITE_ROOT_PATH=test-southeastblueprint
158- # specific to domain where this is deployed
159- SITE_URL=< root URL> /test-southeastblueprint
160- GATSBY_API_HOST=< root URL> /test-southeastblueprint
161- GATSBY_TILE_HOST=< root URL> /test-southeastblueprint
152+ PUBLIC_MAPBOX_TOKEN=< token>
153+ PUBLIC_API_TOKEN=< token>
154+ PUBLIC_SENTRY_DSN=< DSN>
155+ PUBLIC_GOOGLE_ANALYTICS_ID=< id>
156+ PUBLIC_CONTACT_EMAIL=< contact email>
162157
163158# show warning in UI when on staging server
164- GATSBY_ENV=" staging
159+ PUBLIC_DEPLOY_ENV=" staging"
160+
161+ # specific to domain where this is deployed
162+ DEPLOY_PATH=/test-southeastblueprint
163+ PUBLIC_API_HOST=< API host> /test-southeastblueprint
164+ PUBLIC_TILE_HOST=< tile host> /test-southeastblueprint
165165```
166166
167167Create ` ~/secas-ssa/ui/.env.production ` with the following:
You can’t perform that action at this time.
0 commit comments