-
-
Notifications
You must be signed in to change notification settings - Fork 3.6k
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
- Loading branch information
Showing
2 changed files
with
78 additions
and
25 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -1,43 +1,95 @@ | ||
| const nextConfig = {}; | ||
| const nextConfig = { | ||
| // eslint-disable-next-line prefer-arrow/prefer-arrow-functions | ||
| async headers() { | ||
| return [ | ||
| { | ||
| source: "/(.*)", | ||
| headers: securityHeaders, | ||
| }, | ||
| ]; | ||
| }, | ||
| }; | ||
| //add check of if localhsot of not | ||
| const ContentSecurityPolicy = ` | ||
| default-src 'self' https://fonts.googleapis.com ${process.env.NEXT_PUBLIC_SUPABASE_URL} https://api.june.so http://localhost:3001/; | ||
| connect-src 'self' ${process.env.NEXT_PUBLIC_SUPABASE_URL} ${process.env.NEXT_PUBLIC_BACKEND_URL} https://api.june.so; | ||
| img-src 'self' data:; | ||
| script-src 'unsafe-inline' 'unsafe-eval' https://va.vercel-scripts.com/ http://localhost:3001/; | ||
| frame-ancestors 'none'; | ||
| style-src 'unsafe-inline' http://localhost:3001/; | ||
| `; | ||
|
|
||
| // Define headers | ||
| const securityHeaders = [ | ||
| { | ||
| key: "Content-Security-Policy", | ||
| value: ContentSecurityPolicy.replace(/\n/g, ""), | ||
| }, | ||
| { | ||
| key: "Referrer-Policy", | ||
| value: "origin-when-cross-origin", | ||
| }, | ||
| { | ||
| key: "X-Frame-Options", | ||
| value: "SAMEORIGIN", | ||
| }, | ||
| { | ||
| key: "X-Content-Type-Options", | ||
| value: "nosniff", | ||
| }, | ||
| { | ||
| key: "X-DNS-Prefetch-Control", | ||
| value: "on", | ||
| }, | ||
| { | ||
| key: "Permissions-Policy", | ||
| value: "camera=(), microphone=(), geolocation=(), interest-cohort=()", | ||
| }, | ||
| { | ||
| key: "Strict-Transport-Security", | ||
| value: "max-age=31536000", | ||
| }, | ||
| ]; | ||
| //AJouter le content security policy uniquement en pre-vew et en prod | ||
|
|
||
| // Check if the SENTRY_DSN environment variable is defined | ||
| if (process.env.SENTRY_DSN) { | ||
| // SENTRY_DSN exists, include Sentry configuration | ||
| const { withSentryConfig } = require("@sentry/nextjs"); | ||
|
|
||
| module.exports = withSentryConfig( | ||
| nextConfig, | ||
| { | ||
| // For all available options, see: | ||
| // https://github.com/getsentry/sentry-webpack-plugin#options | ||
| nextConfig, | ||
| { | ||
| // For all available options, see: | ||
| // https://github.com/getsentry/sentry-webpack-plugin#options | ||
|
|
||
| // Suppresses source map uploading logs during build | ||
| silent: true, | ||
| // Suppresses source map uploading logs during build | ||
| silent: true, | ||
|
|
||
| org: "quivr-0f", | ||
| project: "javascript-nextjs", | ||
| }, | ||
| { | ||
| // For all available options, see: | ||
| // https://docs.sentry.io/platforms/javascript/guides/nextjs/manual-setup/ | ||
| org: "quivr-0f", | ||
| project: "javascript-nextjs", | ||
| }, | ||
| { | ||
| // For all available options, see: | ||
| // https://docs.sentry.io/platforms/javascript/guides/nextjs/manual-setup/ | ||
|
|
||
| // Upload a larger set of source maps for prettier stack traces (increases build time) | ||
| widenClientFileUpload: true, | ||
| // Upload a larger set of source maps for prettier stack traces (increases build time) | ||
| widenClientFileUpload: true, | ||
|
|
||
| // Transpiles SDK to be compatible with IE11 (increases bundle size) | ||
| transpileClientSDK: true, | ||
| // Transpiles SDK to be compatible with IE11 (increases bundle size) | ||
| transpileClientSDK: true, | ||
|
|
||
| // Routes browser requests to Sentry through a Next.js rewrite to circumvent ad-blockers (increases server load) | ||
| tunnelRoute: "/monitoring", | ||
| // Routes browser requests to Sentry through a Next.js rewrite to circumvent ad-blockers (increases server load) | ||
| tunnelRoute: "/monitoring", | ||
|
|
||
| // Hides source maps from generated client bundles | ||
| hideSourceMaps: true, | ||
| // Hides source maps from generated client bundles | ||
| hideSourceMaps: true, | ||
|
|
||
| // Automatically tree-shake Sentry logger statements to reduce bundle size | ||
| disableLogger: true, | ||
| } | ||
| // Automatically tree-shake Sentry logger statements to reduce bundle size | ||
| disableLogger: true, | ||
| } | ||
| ); | ||
| } else { | ||
| // SENTRY_DSN does not exist, export nextConfig without Sentry | ||
| module.exports = nextConfig; | ||
| } | ||
| } |