release: 1.1.15

00-team · Sep 29, 2024 · 8d9c39f · 8d9c39f
2 parents a13dfaf + 970f29e
commit 8d9c39f
Show file tree

Hide file tree

Showing 5 changed files with 17 additions and 5 deletions.
diff --git a/.github/workflows/deploy.yml b/.github/workflows/deploy.yml
@@ -18,4 +18,5 @@ jobs:
           host: ${{ secrets.HOST }}
           username: ${{ secrets.USERNAME }}
           key: ${{ secrets.KEY }}
+          command_timeout: 1h
           script: bash /heydari/config/deploy.sh
diff --git a/.gitignore b/.gitignore
@@ -17,3 +17,5 @@ main.db*
 logs/
 __pycache__/
 backup/
+log
+*.db*
diff --git a/VERSION b/VERSION
@@ -1 +1 @@
-1.1.8
+1.1.15
diff --git a/config/deploy.sh b/config/deploy.sh
@@ -61,11 +61,18 @@ fi
 if check_diff "src/*"; then
     echo "$EG cargo build"
     cargo build --release
+    systemctl restart heydari
     echo $SPACER
 fi
 
-echo "$EG restart backend"
-systemctl restart heydari
-echo $SPACER
+if check_diff "config/nginx.conf"; then
+    echo "$EG restart nginx"
+    if nginx -t; then
+        systemctl restart nginx
+    else
+        echo invalid nginx status ❌
+    fi
+    echo $SPACER
+fi
 
 echo "Deploy is Done! ✅"
diff --git a/config/nginx.conf b/config/nginx.conf
@@ -24,7 +24,9 @@ server {
     # error_page 403 /error-403;
 
     # Security Headers
-    add_header Content-Security-Policy "default-src 'self'; script-src 'self'; style-src 'self'; img-src 'self' data: https://heydari-mi.com; connect-src 'self'; font-src 'self';";
+    # add_header Content-Security-Policy "default-src 'self' 'unsafe-inline' https://trustseal.enamad.ir https://simurgh.00-team.org https://www.googletagmanager.com https://www.google.com/";
+    add_header Content-Security-Policy "default-src 'self' 'unsafe-inline' *";
+    add_header Permissions-Policy "geolocation=(self), microphone=()";
     add_header X-Content-Type-Options nosniff;
     add_header X-Frame-Options SAMEORIGIN;
     add_header X-XSS-Protection "1; mode=block";