From d3a50a75d682181bc5cd865123896aa06fea0229 Mon Sep 17 00:00:00 2001
From: Markus Hauschild <markus@moepman.eu>
Date: Tue, 1 May 2018 11:49:42 +0200
Subject: [PATCH] hackmd: SSL, temporary CSP'fix

---
 roles/hackmd/templates/config.json.j2 | 5 ++---
 1 file changed, 2 insertions(+), 3 deletions(-)

diff --git a/roles/hackmd/templates/config.json.j2 b/roles/hackmd/templates/config.json.j2
index 521d002..6c72855 100644
--- a/roles/hackmd/templates/config.json.j2
+++ b/roles/hackmd/templates/config.json.j2
@@ -1,6 +1,7 @@
 {
     "production": {
         "domain": "{{ hackmd_domain }}",
+        "protocolUseSSL": true,
         "_hsts": {
             "enable": true,
             "maxAgeSeconds": "31536000",
@@ -8,9 +9,8 @@
             "preload": true
         },
         "csp": {
-            "enable": true,
+            "enable": false,
             "directives": {
-                "imgSrc": ["self", "unsafe-inline"]
             },
             "upgradeInsecureRequests": "auto",
             "addDefaults": true,
@@ -35,7 +35,6 @@
             "usernameField": "cn",
             "useridField": "uid",
             "tlsca": "/etc/ldap/ssl/BKCA.crt"
-            }
         },
         "email": false
     }