On Thu, 10 Nov 2022, Martin Liška wrote:
> See that the problematic for some reason uses "content-security-policy:
> default-src 'self' http: https:".
Yep.
On Thu, 10 Nov 2022, Tobias Burnus wrote:
> content-security-policy: default-src 'self' http: https:
>
> There must be some server configuration that add this - but it does not
> seem to be in the .ht* files in the wwwdocs git repo.
And yep. I dug into this yesterday and found the following:
In /etc/httpd/conf.d/sourceware-vhost-gcc.conf we have
<Location /onlinedocs>
Header unset Content-Security-Policy
</Location>
I am not aware of who added this, and why, nor actually even why, yet it
seems if we can get the same in place for /install we'll be good again, so
I'll ask overseers@.
Next step: redirects from the old /install docs to the new ones.
Gerald
