talisman skip_if=csp_exempt

2025-07-25 21:17:05 +02:00
parent b17a12b9fd
commit d8d786aed8
1 changed files with 5 additions and 1 deletions
--- a/app.py
+++ b/app.py
@@ -63,6 +63,10 @@ logging.getLogger("werkzeug").setLevel(logging.INFO)
 app = Flask(__name__)
 app.config.from_object(Config)

+# wykluczenie /healthcheck z talisman
+def csp_exempt(path):
+    return path == "/healthcheck"
+
 # Konfiguracja nagłówków bezpieczeństwa z .env
 csp_policy = None
 if app.config.get("ENABLE_CSP", True):
@@ -86,6 +90,7 @@ talisman = Talisman(
    content_security_policy=csp_policy,
    x_content_type_options=app.config.get("ENABLE_XCTO", True),
    strict_transport_security_include_subdomains=False,
+    skip_if=csp_exempt
 )

 register_heif_opener()  # pillow_heif dla HEIC
@@ -2223,7 +2228,6 @@ def recalculate_filesizes():


@app.route("/healthcheck")
-@talisman.exempt
 def healthcheck():
    header_token = request.headers.get("X-Internal-Check")
    correct_token = app.config.get("HEALTHCHECK_TOKEN")