From c912c3f6b0975e62e937cd60bb24635be9ebbd2e Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Franti=C5=A1ek=20Dvo=C5=99=C3=A1k?= <valtri@civ.zcu.cz> Date: Tue, 11 Mar 2025 14:34:28 +0000 Subject: [PATCH] Revert "Set some headers as recommended by Pentesting" This reverts commit edc658f77157685a6bcd472df4534adb805113f5. --- common/playbooks/k8s.yaml | 5 ----- 1 file changed, 5 deletions(-) diff --git a/common/playbooks/k8s.yaml b/common/playbooks/k8s.yaml index 058919e..2a0ce76 100644 --- a/common/playbooks/k8s.yaml +++ b/common/playbooks/k8s.yaml @@ -358,12 +358,7 @@ --set controller.service.type=NodePort --set controller.service.externalIPs={{ '{' + hostvars[groups['ingress'][0]].ansible_default_ipv4.address + '}' }} --set controller.config.proxy-body-size=0 - --set controller.config.hide-headers='x-jupyterhub-version' --set controller.allowSnippetAnnotations=false - --set controller.addHeaders.X-Content-Type-Options=nosniff - --set controller.addHeaders.Referrer-Policy=no-referrer - --set controller.addHeaders.Permissions-Policy="geolocation=()" - --set controller.addHeaders.Content-Security-Policy="frame-ancestors 'none'; report-uri /hub/security/csp-report; default-src 'self'" --version={{ version }} shell: |- helm status --namespace kube-system cluster-ingress -- GitLab