fix: Gitea iframe uses proxy path, not direct port

Added gitea to PROXY_APPS so it always routes through /app/gitea/ nginx proxy (same origin as parent page). Fixes X-Frame-Options SAMEORIGIN rejection when loading via direct port. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
2026-04-12 07:05:32 -04:00 · 2026-04-12 07:05:32 -04:00 · e08c0d0b9f
commit e08c0d0b9f
parent a97128bfd2
1 changed files with 3 additions and 2 deletions
--- a/neode-ui/src/views/appSession/appSessionConfig.ts
+++ b/neode-ui/src/views/appSession/appSessionConfig.ts
@ -51,7 +51,9 @@ export const APP_PORTS: Record<string, number> = {
 /** Apps that need nginx proxy for iframe embedding.
 *  IndeedHub loads via /app/indeedhub/ proxy for nostr-provider.js injection
 *  from the container's internal nginx so iframe works on all servers. */
-export const PROXY_APPS: Record<string, string> = {}
+export const PROXY_APPS: Record<string, string> = {
+  'gitea': '/app/gitea/',
+}

 /** Nginx proxy paths -- used on HTTPS to avoid mixed content (HTTPS parent + HTTP port iframe).
 *  On HTTP, direct port access is used instead (faster, no proxy). */
@ -97,7 +99,6 @@ export const HTTPS_PROXY_PATHS: Record<string, string> = {

 /** External HTTPS apps -- always loaded directly */
 export const EXTERNAL_URLS: Record<string, string> = {
-  'gitea': 'http://23.182.128.160:3000',
  'nwnn': 'https://nwnn.l484.com',
  '484-kitchen': 'https://484.kitchen',
  'call-the-operator': 'https://cta.tx1138.com',