feat: nginx.conf updated with url sources based on cfpb analytics whitelist

[shindigira]

closes #817

Changes

• feat: nginx.conf updated with url sources based on cfpb analytics whitelist

How to test this PR

1. Test the deployment for google analytics handling

[billhimmelsbach]

I think you accidentally pushed things you don't want in this PR. Messaging you now.

[shindigira]

I think you accidentally pushed things you don't want in this PR. Messaging you now.

Thank you for catching that.

[billhimmelsbach]

Heyo @shindigira! Can you push this change up to the preview branch, so we can test it / confirm it with the analytics team before we move it to staging?

[shindigira]

Heyo @shindigira! Can you push this change up to the preview branch, so we can test it / confirm it with the analytics team before we move it to staging?

Updated preview with this branch.

[billhimmelsbach]

Heyo! So we confirmed this morning that things were working now, but if you take another peek at the issue, Paul just wants us to add these four domains:

"dap.digitalgov.gov",
"*.googleanalytics.com",
"*.google-analytics.com",
"*.googletagmanager.com",

We don't need all the new CSP additions from that example Paul gave us (like the font-src exceptions), we just need the 4 domains above in the same places they were in the example. Having said that, I might also keep the mouseflow.com ones, just to save us a step when he implements it soon.

[billhimmelsbach]

I confirmed with Paul that things are looking good, so this one is ready for staging. 🎉