From 0899720f168c09d037e577109d7cab665fe1fb91 Mon Sep 17 00:00:00 2001
From: vasraz <vasyl.razinkov@est.tech>
Date: Tue, 4 Oct 2022 18:16:26 +0100
Subject: Fix bug 'X-Frame-Options not configured: Lack of clickjacking
 protection'

Add new Filter (ContentSecurityPolicyHeaderFilter)

Signed-off-by: Vasyl Razinkov <vasyl.razinkov@est.tech>
Change-Id: Ic8151df64e4b95b3d59b44a5f74dd12210f55e87
Issue-ID: SDC-4192
---
 .../sdc-simulator/recipes/SDC_Simulator_2_setup_configuration.rb      | 4 ++--
 .../sdc-simulator/templates/default/SDC-Simulator-webseal.conf.erb    | 4 +++-
 2 files changed, 5 insertions(+), 3 deletions(-)

(limited to 'utils/webseal-simulator/sdc-simulator/chef-repo/cookbooks')

diff --git a/utils/webseal-simulator/sdc-simulator/chef-repo/cookbooks/sdc-simulator/recipes/SDC_Simulator_2_setup_configuration.rb b/utils/webseal-simulator/sdc-simulator/chef-repo/cookbooks/sdc-simulator/recipes/SDC_Simulator_2_setup_configuration.rb
index 3769a1f723..9ee166364c 100644
--- a/utils/webseal-simulator/sdc-simulator/chef-repo/cookbooks/sdc-simulator/recipes/SDC_Simulator_2_setup_configuration.rb
+++ b/utils/webseal-simulator/sdc-simulator/chef-repo/cookbooks/sdc-simulator/recipes/SDC_Simulator_2_setup_configuration.rb
@@ -6,7 +6,6 @@ else
     fe_url="http://#{node['Nodes']['FE']}:#{node['FE'][:http_port]}"
 end
 
-
 template "webseal.conf" do
    path "#{ENV['JETTY_BASE']}/config/sdc-simulator/webseal.conf"
    source "SDC-Simulator-webseal.conf.erb"
@@ -14,6 +13,7 @@ template "webseal.conf" do
    group "#{ENV['JETTY_GROUP']}"
    mode "0755"
    variables({
-      :fe_url  =>"#{fe_url}"
+      :fe_url  =>"#{fe_url}",
+      :permittedAncestors => "#{ENV['permittedAncestors']}"
    })
 end
diff --git a/utils/webseal-simulator/sdc-simulator/chef-repo/cookbooks/sdc-simulator/templates/default/SDC-Simulator-webseal.conf.erb b/utils/webseal-simulator/sdc-simulator/chef-repo/cookbooks/sdc-simulator/templates/default/SDC-Simulator-webseal.conf.erb
index f6e634481f..f72c3ae270 100644
--- a/utils/webseal-simulator/sdc-simulator/chef-repo/cookbooks/sdc-simulator/templates/default/SDC-Simulator-webseal.conf.erb
+++ b/utils/webseal-simulator/sdc-simulator/chef-repo/cookbooks/sdc-simulator/templates/default/SDC-Simulator-webseal.conf.erb
@@ -2,6 +2,8 @@
 	webseal {
 		fe="<%= @fe_url %>"
 		portalCookieName="EPService"
+		#Space separated list of permitted ancestors
+		permittedAncestors="<%= @permittedAncestors %>"
 		users = [
 			{
 				userId="cs0008"
@@ -9,7 +11,7 @@
 				firstName="Carlos"
 				lastName="Santana"
 				role="Designer"
-				email="csantana@sdc.com"			
+				email="csantana@sdc.com"
 			},
 			{
 				userId="jh0003"
-- 
cgit 1.2.3-korg