Add settings for enabling CSP to config file (#2134)

* add enabling csp to config file * comment out report URI to avoid breaking self-hosted
getsentry · May 10, 2023 · 25f10ea · 25f10ea
1 parent d8b1432
commit 25f10ea
Showing 1 changed file with 13 additions and 0 deletions.
diff --git a/sentry/sentry.conf.example.py b/sentry/sentry.conf.example.py
@@ -306,3 +306,16 @@ def get_internal_network():
 
 if OPENAI_API_KEY:
   SENTRY_FEATURES["organizations:open-ai-suggestion"] = True
+
+##############################################
+# Content Security Policy settings
+##############################################
+
+if "csp.middleware.CSPMiddleware" not in MIDDLEWARE:
+    MIDDLEWARE = ("csp.middleware.CSPMiddleware",) + MIDDLEWARE
+# CSP_REPORT_URI = "https://{your-sentry-installation}/api/{csp-project}/security/?sentry_key={sentry-key}"
+CSP_REPORT_ONLY = True
+
+# optional extra permissions
+# https://django-csp.readthedocs.io/en/latest/configuration.html
+# CSP_SCRIPT_SRC += ["example.com"]