From c912c3f6b0975e62e937cd60bb24635be9ebbd2e Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Franti=C5=A1ek=20Dvo=C5=99=C3=A1k?= <valtri@civ.zcu.cz>
Date: Tue, 11 Mar 2025 14:34:28 +0000
Subject: [PATCH] Revert "Set some headers as recommended by Pentesting"

This reverts commit edc658f77157685a6bcd472df4534adb805113f5.
---
 common/playbooks/k8s.yaml | 5 -----
 1 file changed, 5 deletions(-)

diff --git a/common/playbooks/k8s.yaml b/common/playbooks/k8s.yaml
index 058919e..2a0ce76 100644
--- a/common/playbooks/k8s.yaml
+++ b/common/playbooks/k8s.yaml
@@ -358,12 +358,7 @@
           --set controller.service.type=NodePort
           --set controller.service.externalIPs={{ '{' + hostvars[groups['ingress'][0]].ansible_default_ipv4.address + '}' }}
           --set controller.config.proxy-body-size=0
-          --set controller.config.hide-headers='x-jupyterhub-version'
           --set controller.allowSnippetAnnotations=false
-          --set controller.addHeaders.X-Content-Type-Options=nosniff
-          --set controller.addHeaders.Referrer-Policy=no-referrer
-          --set controller.addHeaders.Permissions-Policy="geolocation=()"
-          --set controller.addHeaders.Content-Security-Policy="frame-ancestors 'none'; report-uri /hub/security/csp-report; default-src 'self'"
           --version={{ version }}
       shell: |-
         helm status --namespace kube-system cluster-ingress
-- 
GitLab