From 1c0c44f2f8446f088918b0b6cc8e282d95d47a37 Mon Sep 17 00:00:00 2001
From: Pieter Vander Vennet <pietervdvn@posteo.net>
Date: Mon, 25 Sep 2023 03:14:29 +0200
Subject: [PATCH] Deploy: add hetzner config files

---
 scripts/hetzner/config/Caddyfile              | 21 +++++++++++++++++++
 scripts/hetzner/config/csp-logger-config.json |  7 +++++++
 2 files changed, 28 insertions(+)
 create mode 100644 scripts/hetzner/config/Caddyfile
 create mode 100644 scripts/hetzner/config/csp-logger-config.json

diff --git a/scripts/hetzner/config/Caddyfile b/scripts/hetzner/config/Caddyfile
new file mode 100644
index 0000000000..a417808d2f
--- /dev/null
+++ b/scripts/hetzner/config/Caddyfile
@@ -0,0 +1,21 @@
+hosted.mapcomplete.org {
+	root * public/
+	file_server
+	header {
+		+Permissions-Policy "interest-cohort=()"
+        +Report-To `\{"group":"csp-endpoint", "max_age": 86400,"endpoints": [\{"url": "https://report.mapcomplete.org/csp"}], "include_subdomains": true}`
+		+Content-Security-Policy-Report-Only "default-src 'self'; script-src 'self' https://gc.zgo.at ; img-src * ; report-uri https://report.mapcomplete.org/csp ; report-to csp-endpoint ;"
+	}
+}
+
+countrycoder.mapcomplete.org {
+	root * tiles/
+	file_server
+}
+
+
+report.mapcomplete.org {
+	reverse_proxy {
+		to http://127.0.0.1:2600
+	}
+}
diff --git a/scripts/hetzner/config/csp-logger-config.json b/scripts/hetzner/config/csp-logger-config.json
new file mode 100644
index 0000000000..0c2bfd7a21
--- /dev/null
+++ b/scripts/hetzner/config/csp-logger-config.json
@@ -0,0 +1,7 @@
+{
+  "store": "console",
+  "allowedOrigin": null,
+  "port": 2600,
+  "domainWhitelist": ["localhost:10179", "localhost:2600","hosted.mapcomplete.org", "dev.mapcomplete.org", "mapcomplete.org","*"],
+  "sourceBlacklist": ["chrome-extension://gighmmpiobklfepjocnamgkkbiglidom"]
+}