mirror of
https://github.com/felipegcoutinho/openmonetis.git
synced 2026-05-09 02:51:46 +00:00
43697b4fd2
Content-Security-Policy estava em next.config.ts (build time), então S3_ENDPOINT nunca era incluído no connect-src ao buildar via Docker no CI. Movido para proxy.ts que avalia em runtime. Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
64 lines
1.2 KiB
TypeScript
64 lines
1.2 KiB
TypeScript
import dotenv from "dotenv";
|
|
import type { NextConfig } from "next";
|
|
|
|
// Carregar variáveis de ambiente explicitamente
|
|
dotenv.config();
|
|
|
|
const nextConfig: NextConfig = {
|
|
output: "standalone",
|
|
cacheComponents: true,
|
|
reactCompiler: true,
|
|
|
|
images: {
|
|
remotePatterns: [new URL("https://lh3.googleusercontent.com/**")],
|
|
},
|
|
devIndicators: {
|
|
position: "bottom-right",
|
|
},
|
|
experimental: {
|
|
prefetchInlining: true,
|
|
turbopackFileSystemCacheForDev: true,
|
|
},
|
|
|
|
// Headers for Safari compatibility
|
|
async headers() {
|
|
return [
|
|
{
|
|
source: "/:path*",
|
|
headers: [
|
|
{
|
|
key: "X-DNS-Prefetch-Control",
|
|
value: "on",
|
|
},
|
|
{
|
|
key: "Strict-Transport-Security",
|
|
value: "max-age=31536000; includeSubDomains",
|
|
},
|
|
{
|
|
key: "X-Content-Type-Options",
|
|
value: "nosniff",
|
|
},
|
|
{
|
|
key: "X-Frame-Options",
|
|
value: "DENY",
|
|
},
|
|
{
|
|
key: "Referrer-Policy",
|
|
value: "strict-origin-when-cross-origin",
|
|
},
|
|
{
|
|
key: "X-Permitted-Cross-Domain-Policies",
|
|
value: "none",
|
|
},
|
|
{
|
|
key: "Permissions-Policy",
|
|
value: "camera=(), microphone=(), geolocation=()",
|
|
},
|
|
],
|
|
},
|
|
];
|
|
},
|
|
};
|
|
|
|
export default nextConfig;
|