Enable user to define their own content-security-policy

2023-11-09 21:50:46 -05:00
parent 81aa00c2ea
commit 924696c015
4 changed files with 34 additions and 25 deletions
--- a/handlers/proxy.go
+++ b/handlers/proxy.go
@@ -33,6 +33,8 @@ func ProxySite(c *fiber.Ctx) error {
 	}

 	c.Set("Content-Type", resp.Header.Get("Content-Type"))
+	c.Set("Content-Security-Policy", resp.Header.Get("Content-Security-Policy"))
+
 	return c.SendString(body)
 }

@@ -111,6 +113,10 @@ func fetchSite(urlpath string, queries map[string]string) (string, *http.Request
 		return "", nil, nil, err
 	}

+	if rule.Headers.CSP != "" {
+		resp.Header.Set("Content-Security-Policy", rule.Headers.CSP)
+	}
+
 	log.Print("rule", rule)
 	body := rewriteHtml(bodyB, u, rule)
 	return body, req, resp, nil