Question

how to implement Content-Security-Policy?

0

hi everybody,I want to ask how to implement Content-Security-Policy in Mendix, I have followed the steps on how to create it via the following documentation: https://docs.mendix.com/howto/security/csp/ , but right at the final stage, when I want to create an HTTP header, it is in the environment menu to add HTTP The header is missing; does anyone know how to add the HTTP header or how to add "Content-Security-Policy" in another way?

asked 2024-03-25

Teguh Sumarno

1 answers

Quang Nhat Tran · Answer 1 · 2024-04-02

you need to modified the yaml file and add annotation for this.

apiVersion: networking.k8s.io/v1
kind: Ingress
metadata:
  name: example-ingress
  namespace: default
  annotations:
    nginx.ingress.kubernetes.io/enable-cors: "true"
    nginx.ingress.kubernetes.io/proxy-buffer-size: "16k"
spec:
  rules:
  - host: example.com
    http:
      paths:
      - path: /
        pathType: Prefix
        backend:
          service:
            name: example-service
            port:
              number: 80