Public
- Public
- Groups
- Recent tags
- Popular
- Directory

Conversation:

Notices

maiyannah (maiyannah)'s status on Wednesday, 09-Nov-2016 18:11:03 EST maiyannah
Remote profile options...

Okay, HTTPS is working with git.postactiv.com - though I'm not sure how to handle the fact that gitlab has mixed content going on.

Wednesday, 09-Nov-2016 18:11:03 EST from community.highlandarrow.com permalink
- maiyannah (maiyannah)'s status on Wednesday, 09-Nov-2016 18:13:25 EST maiyannah
  Remote profile options...
  
  Think I got it.
  
  Wednesday, 09-Nov-2016 18:13:25 EST permalink
- Bob Mottram (bob)'s status on Wednesday, 09-Nov-2016 18:15:03 EST Bob Mottram
  Remote profile options...
  - maiyannah
  @maiyannah to enforce https you need content-security-policy. In nginx:
  
  add_header Content-Security-Policy \"default-src https:; script-src https: 'unsafe-inline'; style-src https: 'unsafe-inline'\";
  
  Wednesday, 09-Nov-2016 18:15:03 EST permalink
- maiyannah (maiyannah)'s status on Wednesday, 09-Nov-2016 18:17:04 EST maiyannah
  Remote profile options...
  - Bob Mottram
  @bob That's worth doing too. Completely restarting gitlab seemed to make it clear out the old HTTP uris
  
  Wednesday, 09-Nov-2016 18:17:04 EST permalink

Feeds