I have an application where I would like to avoid click-jacking security issue. To avoid click jacking issue I am adding Content-Security-Policy header with 'self' and the host-name (this host-name will only be known after the user enters their hostname) in the nginx.conf file like
add_header Content-Security-Policy "frame-ancestors 'self' https://$SOME_HOST:443";
And then after restarting the nginx everything works normally.
Is there a way available to do this through code (using anything like java, shell or python) like change the nginx configuration on the fly when the user enters their hostname and then restart the nginx.
Is this possible?
question from:
https://stackoverflow.com/questions/65626838/how-to-change-nginx-configuration-on-the-fly-through-code 与恶龙缠斗过久,自身亦成为恶龙;凝视深渊过久,深渊将回以凝视…
