Cloudron makes it easy to run web apps like WordPress, Nextcloud, GitLab on your server. Find out more or install now.

Cloudron Forum

Your browser does not seem to support JavaScript. As a result, your viewing experience will be diminished, and you have been placed in read-only mode.

Please download a browser that supports JavaScript, or enable it if it's disabled (i.e. NoScript).

W

CSP error in admin panel + security warning from angular-translate
Watching Ignoring Scheduled Pinned Locked Moved Solved Support csp firefox
11

1

0 Votes

11 Posts

2k Views

N

I don't see how this can be actually used for malicous action regarding the translations, since those are coming in a well-known format and from your server itself, so unless someone intercepts or changes that on the server, nothing much can happen (and if someone can do that, well there are other things one should be worried about) If there are serious concerns around a real security issue, would be great to have that explained if someone is aware.
I

Unable to enable Rocket Chat omnichannel website embed
Watching Ignoring Scheduled Pinned Locked Moved Solved Rocket.Chat csp
3

0 Votes

3 Posts

949 Views

I

@fbartels Thank you, that was it! In case anyone else finds this blog post, the updated instructions are here: https://docs.cloudron.io/apps/#custom-csp
A

Vimeo like restriction for serving videos to certain domains
Watching Ignoring Scheduled Pinned Locked Moved PeerTube csp embed iframe
3

0 Votes

3 Posts

757 Views

N

This can be done via ContentSecurityPolicy and Cloudron supports this for all apps: https://cloudron.io/documentation/apps/#custom-csp