Cloudron makes it easy to run web apps like WordPress, Nextcloud, GitLab on your server. Find out more or install now.


Skip to content
Brand Logo

Cloudron Forum
  • apesorgukA

    CSP Issues

    Solved Support csp
    3
    0 Votes
    3 Posts
    72 Views
    apesorgukA
    They were only being embedded for the staff on our Nextcloud, not for the public. And we did restrict to our internal domains and had the same issues. Just thought people should know that some apps don't work at all with CSP, causing these apps GUI to stop loading complely making it look like the app no longer works.
  • W

    CSP error in admin panel + security warning from angular-translate

    Solved Support csp firefox
    11
    1
    0 Votes
    11 Posts
    3k Views
    nebulonN
    I don't see how this can be actually used for malicous action regarding the translations, since those are coming in a well-known format and from your server itself, so unless someone intercepts or changes that on the server, nothing much can happen (and if someone can do that, well there are other things one should be worried about) If there are serious concerns around a real security issue, would be great to have that explained if someone is aware.
  • ianhyzyI

    Unable to enable Rocket Chat omnichannel website embed

    Solved Rocket.Chat csp
    3
    0 Votes
    3 Posts
    1k Views
    ianhyzyI
    @fbartels Thank you, that was it! In case anyone else finds this blog post, the updated instructions are here: https://docs.cloudron.io/apps/#custom-csp
  • alejandrolenguaA

    Vimeo like restriction for serving videos to certain domains

    PeerTube csp embed iframe
    3
    0 Votes
    3 Posts
    1k Views
    nebulonN
    This can be done via ContentSecurityPolicy and Cloudron supports this for all apps: https://cloudron.io/documentation/apps/#custom-csp