From b184fd0076dc29c4f52d14185f4ffcd0388847fc Mon Sep 17 00:00:00 2001
From: Atharv Bhandare <atharvbhandare2001@gmail.com>
Date: Wed, 30 Apr 2025 12:44:07 +1000
Subject: [PATCH] Removed CSP from nginx.conf to avoid conflicts with the
 headers in proxy-nginx.conf

---
 nginx.conf | 48 ++++++++++++++++++++++++------------------------
 1 file changed, 24 insertions(+), 24 deletions(-)

diff --git a/nginx.conf b/nginx.conf
index 3d38fa6fd5..eb487e6beb 100644
--- a/nginx.conf
+++ b/nginx.conf
@@ -1,24 +1,24 @@
-worker_processes 1;
-
-events {  }
-
-http {
-    include /etc/nginx/mime.types;
-
-    sendfile on;
-    server {
-        root /usr/share/nginx/html/;
-        index index.html;
-        listen 80;
-
-        add_header Content-Security-Policy "default-src https: 'unsafe-inline' 'unsafe-eval' blob: data: ws:" always;
-        # add_header Feature-Policy "microphone=(self),speaker=(self),fullscreen=(self),payment=(none);" always;
-        add_header Permissions-Policy "microphone=(self),speaker=(self),fullscreen=(self),payment=(none)" always;
-    }
-
-    gzip on;
-    gzip_types text/css application/javascript;
-    gzip_proxied any;
-    gzip_buffers 32 8k;
-
-}
+worker_processes 1;
+
+events {  }
+
+http {
+    include /etc/nginx/mime.types;
+
+    sendfile on;
+    server {
+        root /usr/share/nginx/html/;
+        index index.html;
+        listen 80;
+        # Commenting out Content-Security-Policy_headers here so that it won't create over-ride conflict with the security headers mentioned in proxy-nginx.conf
+        # add_header Content-Security-Policy "default-src https: 'unsafe-inline' 'unsafe-eval' blob: data: ws:" always;
+        # add_header Feature-Policy "microphone=(self),speaker=(self),fullscreen=(self),payment=(none);" always;
+        add_header Permissions-Policy "microphone=(self),speaker=(self),fullscreen=(self),payment=(none)" always;
+    }
+
+    gzip on;
+    gzip_types text/css application/javascript;
+    gzip_proxied any;
+    gzip_buffers 32 8k;
+
+}