From 3c25260e79a7ae691a25b6f9aaab67b1c831ca03 Mon Sep 17 00:00:00 2001
From: Jack O'Sullivan <jackos1998@gmail.com>
Date: Fri, 13 Jan 2023 14:04:47 +0000
Subject: [PATCH] nixos/middleman: Fix Matrix cross-origin shite

---
 .../colony/vms/shill/containers/middleman/vhosts.nix      | 8 +++++---
 1 file changed, 5 insertions(+), 3 deletions(-)

diff --git a/nixos/boxes/colony/vms/shill/containers/middleman/vhosts.nix b/nixos/boxes/colony/vms/shill/containers/middleman/vhosts.nix
index 7660fce..4cacac7 100644
--- a/nixos/boxes/colony/vms/shill/containers/middleman/vhosts.nix
+++ b/nixos/boxes/colony/vms/shill/containers/middleman/vhosts.nix
@@ -40,6 +40,7 @@ let
       alias = "${wellKnownRoot}/";
       extraConfig = ''
         autoindex on;
+        add_header Access-Control-Allow-Origin *;
       '';
     };
     "/.well-known/webfinger".return = "301 https://toot.nul.ie$request_uri";
@@ -179,9 +180,10 @@ in
       "element.${lib.my.pubDomain}" =
       let
         headers = ''
-          add_header X-Frame-Options SAMEORIGIN;
-          add_header X-Content-Type-Options nosniff;
-          add_header X-XSS-Protection "1; mode=block";
+          # TODO: why are these here?
+          #add_header X-Frame-Options SAMEORIGIN;
+          #add_header X-Content-Type-Options nosniff;
+          #add_header X-XSS-Protection "1; mode=block";
           # This seems to break file downloads...
           #add_header Content-Security-Policy "frame-ancestors 'none'";
         '';