fbf26453f2
ConsentOS — a privacy-first cookie consent management platform. Self-hosted, source-available alternative to OneTrust, Cookiebot, and CookieYes. Full standards coverage (IAB TCF v2.2, GPP v1, Google Consent Mode v2, GPC, Shopify Customer Privacy API), multi-tenant architecture with role-based access, configuration cascade (system → org → group → site → region), dark-pattern detection in the scanner, and a tamper-evident consent record audit trail. This is the initial public release. Prior development history is retained internally. See README.md for the feature list, architecture overview, and quick-start instructions. Licensed under the Elastic Licence 2.0 — self-host freely; do not resell as a managed service.
27 lines
746 B
Plaintext
27 lines
746 B
Plaintext
# Cloudflare Pages custom headers
|
|
# https://developers.cloudflare.com/pages/configuration/headers/
|
|
|
|
/consent-loader.js
|
|
Access-Control-Allow-Origin: *
|
|
Cross-Origin-Resource-Policy: cross-origin
|
|
Cache-Control: public, max-age=3600
|
|
|
|
/consent-bundle.js
|
|
Access-Control-Allow-Origin: *
|
|
Cross-Origin-Resource-Policy: cross-origin
|
|
Cache-Control: public, max-age=3600
|
|
|
|
/consent-bundle.js.map
|
|
Access-Control-Allow-Origin: *
|
|
Cross-Origin-Resource-Policy: cross-origin
|
|
|
|
/site-config-*.json
|
|
Access-Control-Allow-Origin: *
|
|
Cross-Origin-Resource-Policy: cross-origin
|
|
Cache-Control: public, max-age=300
|
|
|
|
/translations-*.json
|
|
Access-Control-Allow-Origin: *
|
|
Cross-Origin-Resource-Policy: cross-origin
|
|
Cache-Control: public, max-age=300
|