fix: swagger-ui csp, strict csp static files and cleanup obselete files (#7966)

* fix: swagger-ui csp and cleanup unnecessary files This change fixes CSP errors when browsing Swagger and cuts down the binary/image size 10%+ by keeping only required files from the swagger-ui package. Signed-off-by: Amir Zarrinkafsh <nightah@me.com> * fix(api): fix server url Signed-off-by: Amir Zarrinkafsh <nightah@me.com> * refactor: set strict csp on static served files Signed-off-by: Amir Zarrinkafsh <nightah@me.com> --------- Signed-off-by: Amir Zarrinkafsh <nightah@me.com>
author: Amir Zarrinkafsh <nightah@me.com> 2024-10-03 19:36:02 +1000
committer: GitHub <noreply@github.com> 2024-10-03 19:36:02 +1000
commit: d7603f01778ef2e461bb29bfdcdaa5ef413d00e2 (patch)
tree: eccd5911106a269f3e2f3af848198ee8c46f848f /internal/middlewares/const.go
parent: a044ad7c3ed6e4fbe9cd63e02adc2a85c9c4bcfb (diff)
1 files changed, 1 insertions, 0 deletions
diff --git a/internal/middlewares/const.go b/internal/middlewares/const.go
index 6c3361b49..fd6ce084c 100644
--- a/internal/middlewares/const.go
+++ b/internal/middlewares/const.go
@@ -59,6 +59,7 @@ var (
 	headerValueZero            = []byte("0")
 	headerValueCSPNone         = []byte("default-src 'none'")
 	headerValueCSPNoneFormPost = []byte("default-src 'none'; script-src 'sha256-skflBqA90WuHvoczvimLdj49ExKdizFjX2Itd6xKZdU='")
+	headerValueCSPSelf         = []byte("default-src 'self'")
 
 	headerValueNoSniff                 = []byte("nosniff")
 	headerValueStrictOriginCrossOrigin = []byte("strict-origin-when-cross-origin")
author	Amir Zarrinkafsh <nightah@me.com>	2024-10-03 19:36:02 +1000
committer	GitHub <noreply@github.com>	2024-10-03 19:36:02 +1000
commit	d7603f01778ef2e461bb29bfdcdaa5ef413d00e2 (patch)
tree	eccd5911106a269f3e2f3af848198ee8c46f848f /internal/middlewares/const.go
parent	a044ad7c3ed6e4fbe9cd63e02adc2a85c9c4bcfb (diff)