flowing API policy misconfiguration?

[moonmilk]

Refused to connect to 'wss://oulipo.social//api/v1/streaming/?access_token=[]&stream=public:local' because it violates the following Content Security Policy directive: "connect-src wss://example.com 'self'".

Possibly example.com ought to say oulipo.social at that spot?

---

• [x] I searched or browsed the repo’s other issues to ensure this is not a duplicate.

[moonmilk]

(found by @starlit: https://oulipo.social/@starlit/32376)

[starlit-void]

this listing may show a ray of light: https://github.com/mouse-reeve/mastodon/blob/master/spec/fabricators/application_fabricator.rb

[etjossem]

I saw this too.

Cmd-R is thusly a must to pull new toots.

[ecmendenhall]

I'm looking at Rails for this, but I think this is down to a bash var in prod such as this, or an Nginx config such as this, which should say "oulipo.social".

[mouse-reeve]

fixing my apache2 config did fix that JS log but now it's 500ing. chuggin' along

[starlit-void]

now browsing output has: application-eb0878a….js:1894 WebSocket connection to 'wss://oulipo.social//api/v1/streaming/?access_token=<TOKEN>&stream=user' failed: Error during WebSocket handshake: Unexpected response code: 500 non-stop

[mouse-reeve]

yup, hoping to work out why and fix that soon