yoinkkk/ExcaliDash
2
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

prevent preview updates from overwriting drawings

Browse Source
This commit is contained in:
Zimeng Xiong
2026-02-07 15:51:27 -08:00
parent 02736d663a
commit 2aa749a2f0
27 changed files with 1172 additions and 2759 deletions
Download Patch File Download Diff File Expand all files Collapse all files
frontend/nginx.conf
+16 -2
View File
@@ -6,6 +6,14 @@ http {
include /etc/nginx/mime.types;
default_type application/octet-stream;
# Preserve upstream TLS context (if present) when proxying to backend.
# Falls back to current scheme when no forwarded proto is provided.
map $http_x_forwarded_proto $forwarded_proto {
default $scheme;
~*^https(?:,|$) https;
~*^http(?:,|$) http;
}
sendfile on;
keepalive_timeout 65;
gzip on;
@@ -21,6 +29,12 @@ http {
root /usr/share/nginx/html;
index index.html;
add_header X-Frame-Options "DENY" always;
add_header X-Content-Type-Options "nosniff" always;
add_header Referrer-Policy "strict-origin-when-cross-origin" always;
add_header Permissions-Policy "camera=(), microphone=(), geolocation=()" always;
add_header Content-Security-Policy "default-src 'self'; base-uri 'self'; form-action 'self'; frame-ancestors 'none'; script-src 'self'; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; font-src 'self' https://fonts.gstatic.com data:; img-src 'self' data: blob: https:; connect-src 'self' https: ws: wss:;" always;
# API and WebSocket proxy to backend
location /api/ {
proxy_pass http://backend:8000/;
@@ -31,7 +45,7 @@ http {
proxy_cache_bypass $http_upgrade;
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_set_header X-Forwarded-Proto $scheme;
proxy_set_header X-Forwarded-Proto $forwarded_proto;
# Buffer and timeout settings for large payloads
proxy_buffering on;
@@ -56,7 +70,7 @@ http {
proxy_cache_bypass $http_upgrade;
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_set_header X-Forwarded-Proto $scheme;
proxy_set_header X-Forwarded-Proto $forwarded_proto;
}
# Frontend routes