From b5aff22409e8f2052fd285442dabab66052681d8 Mon Sep 17 00:00:00 2001
From: Julien Palard <julien@palard.fr>
Date: Fri, 7 Apr 2023 22:56:27 +0200
Subject: [PATCH] CSP CSP CSP

---
 afpy.org.yml     | 3 +--
 http-to-xmpp.yml | 5 ++++-
 2 files changed, 5 insertions(+), 3 deletions(-)

diff --git a/afpy.org.yml b/afpy.org.yml
index 0a42804..45f7480 100644
--- a/afpy.org.yml
+++ b/afpy.org.yml
@@ -66,8 +66,7 @@
               index index.html;
               add_header Reporting-Endpoints xmpp="https://http-to-xmpp.afpy.org";
               add_header Report-To '{"group": "xmpp", "max_age": 86400, "endpoints": [{"url": "https://http-to-xmpp.afpy.org"}]}';
-              add_header Content-Security-Policy-Report-Only "default-src 'none'; img-src 'self'; style-src 'self'; script-src 'self'; frame-ancestors 'self'; report-uri https://http-to-xmpp.afpy.org; report-to xmpp";
-              # add_header Content-Security-Policy-Report-Only "default-src 'none'; img-src 'self'; style-src 'self'; script-src 'self'; frame-ancestors 'self'; frame-src https://www.helloasso.com https://web.libera.chat report-uri https://http-to-xmpp.afpy.org; report-to xmpp";
+              add_header Content-Security-Policy "default-src 'none'; img-src 'self'; style-src 'self'; script-src 'self'; frame-ancestors 'self'; frame-src https://www.helloasso.com https://web.libera.chat; report-uri https://http-to-xmpp.afpy.org; report-to xmpp";
               add_header X-Content-Type-Options "nosniff";
 
               location /discord
diff --git a/http-to-xmpp.yml b/http-to-xmpp.yml
index 6585a8a..1c88e99 100644
--- a/http-to-xmpp.yml
+++ b/http-to-xmpp.yml
@@ -26,10 +26,13 @@
       changed_when: False
 
     - name: Install http-to-xmpp
+      notify: restart gate
       become: true
       become_user: "{{ user }}"
       pip:
-        name: [http-to-xmpp, pytz]
+        name:
+          - "http-to-xmpp>=0.2"
+          - pytz
         virtualenv_command: /usr/bin/python3 -m venv
         virtualenv: "{{ home }}/venv/"