-
Notifications
You must be signed in to change notification settings - Fork 0
/
netlify.toml
44 lines (39 loc) · 1.69 KB
/
netlify.toml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
# BUILD Settings:
# ##############################################################################
[build]
command = "npm run build"
publish = ".next"
# PLUGINS
# ##############################################################################
[[plugins]]
package = "@netlify/plugin-nextjs"
# Fetch vault plugin needs to come before any of the contextual environment
# variable plugins so they can act on the new vars.
[[plugins]]
package = "netlify-plugin-vault-variables"
[plugins.inputs]
# The vault service endpoint
endpoint = 'https://vault.stanford.edu'
# Order doesn't matter here as these will be fetched asynchronously. Try not to have dupes.
secrets = ['secret/data/projects/adapt/ood-giving-campaign']
# Set which environment variables to use for the approle login
secretId = 'VAULT_SECRET_ID'
roleId = 'VAULT_ROLE_ID'
[[plugins]]
package = '/plugins/netlify-plugin-contextual-auth'
[plugins.inputs]
username = 'Stanford'
password = 'OnPurpose'
context = ['branch-deploy', 'deploy-preview']
file = '.next/_headers'
# HEADERS
# ##############################################################################
[[headers]]
for = "/*"
[headers.values]
Access-Control-Allow-Origin = "*"
Content-Security-Policy = "default-src https: 'unsafe-inline' 'unsafe-eval'; form-action https:; img-src https: data:; frame-ancestors https://app.storyblok.com"
X-Content-Type-Options = "nosniff"
Referrer-Policy = "strict-origin-when-cross-origin"
Strict-Transport-Security = "max-age=31536000"
Permissions-Policy = "vibrate=(), geolocation=(), midi=(), notifications=(), push=(), microphone=(), camera=(), magnetometer=(), gyroscope=(), speaker=()"