This project provides a Docker-based environment for testing and experimenting with Content Security Policies (CSP) in Nginx.
This setup allows developers to quickly modify HTML, CSS, and Nginx configuration files, with immediate reflection of changes in the running container. It's designed for ease of use, making it an ideal tool for experimentation.
Before getting started, ensure you have the following installed on your machine:
Clone the Repository:
git clone https://github.com/nizos/csp-docker.git
cd csp-dockerBuild and Start the Docker Container:
Run the following command to build the Docker image and start the container:
docker-compose up --build -dThis command will:
- Build the Docker image if it's not already built.
- Start the container in detached mode, with the necessary files and configurations mounted as volumes.
Once the container is running, you can access the application by navigating to localhost:8080 in your web browser.
Any changes you make to the files in the site directory (index.html, style.css) will be automatically updated in the running container.
If you edit the nginx.conf file in the nginx directory, you'll need to reload Nginx to apply the changes.
After editing the Nginx configuration file, reload Nginx with:
docker exec csp-container nginx -s reloadIf you need to access the container's shell, use the following command:
docker exec -it csp-container /bin/shThis command opens an interactive shell session inside the running container.
To set up a CSP with specific hashes, you may need to calculate the SHA-256 hash of a file. Here’s how to do it on different operating systems:
openssl dgst -sha256 -binary yourfile.txt | openssl base64Get-FileHash yourfile.txt -Algorithm SHA256 | ForEach-Object { [convert]::ToBase64String([System.Text.Encoding]::UTF8.GetBytes($_.Hash)) }