[ADD] allow iframe option

d47e3b47 · Théo - Le Filament · ef6de418 · d47e3b47 · d47e3b47 · d47e3b47
Commit d47e3b47 authored 2 years ago by Théo - Le Filament
--- a/README.md
+++ b/README.md
@@ -18,6 +18,7 @@ Variables defined in defaults/main.yaml:
 * default_sshd_port: Port on which SSH daemon listens (defaults to 10022)
 * host_user : user used to connect to the server
 * srv_proxy_pass: Password to access proxy protected pages (AUTH defaults to SuperSecureProxyP4$$)
+* allow_iframe: whether iframes are allowed

 This role makes use of a few variables which are set in case the target server is part of other groups (but still initialized to false in defaults/main.yml), namely :
 * docker_auth

--- a/defaults/main.yml
+++ b/defaults/main.yml
@@ -20,3 +20,6 @@ metabase: false
 ## Auth
 ldap_url: "ldap.example.org"
 sso_url: "sso.example.org"
+
+## iframe
+allow_iframe: false
--- a/templates/traefik.toml.j2
+++ b/templates/traefik.toml.j2
@@ -51,7 +51,7 @@
      contentTypeNosniff = true
      referrerPolicy = "same-origin"
      forceSTSHeader = true
-{% if not cloud_onlyoffice %}
+{% if not cloud_onlyoffice and not allow_iframe %}
      frameDeny = true
      customFrameOptionsValue = "SAMEORIGIN"
 {% endif %}