alex/voyage
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Enhance Nginx configuration for protected media files with PDF handling

Browse Source
This commit is contained in:
Sean Morley
2025-05-22 16:26:50 -04:00
parent f96b6f5f65
commit 14e71626f6
1 changed files with 13 additions and 4 deletions
Download Patch File Download Diff File Expand all files Collapse all files

17
backend/nginx.conf
View File

@@ -36,10 +36,19 @@ http {
# Serve protected media files with X-Accel-Redirect # Serve protected media files with X-Accel-Redirect
location /protectedMedia/ { location /protectedMedia/ {
internal; # Only internal requests are allowed internal;
alias /code/media/; # This should match Django MEDIA_ROOT alias /code/media/;
try_files $uri =404; # Return a 404 if the file doesn't exist try_files $uri =404;
}
# Nested location for PDFs
location ~* \.pdf$ {
add_header Content-Security-Policy "default-src 'self'; script-src 'none'; object-src 'none'; base-uri 'none'" always;
add_header X-Content-Type-Options nosniff always;
add_header X-Frame-Options SAMEORIGIN always;
add_header Content-Disposition "inline" always;
}
}
} }
} }