aboutsummaryrefslogtreecommitdiff
path: root/nginx-example.conf
diff options
context:
space:
mode:
Diffstat (limited to 'nginx-example.conf')
-rw-r--r--nginx-example.conf6
1 files changed, 6 insertions, 0 deletions
diff --git a/nginx-example.conf b/nginx-example.conf
index 97e5027..f3d9252 100644
--- a/nginx-example.conf
+++ b/nginx-example.conf
@@ -30,5 +30,11 @@ server {
fastcgi_pass unix:/run/fcgiwrap.sock;
include /etc/nginx/fastcgi_params;
}
+
+ add_header Strict-Transport-Security "max-age=63072000; preload";
+ add_header Content-Security-Policy "default-src 'self'";
+ add_header X-Frame-Options DENY;
+ add_header Access-Control-Allow-Origin https://$server_name;
+ add_header Vary Origin; # https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Access-Control-Allow-Origin#cors_and_caching
}
generated by cgit v1.2.3-70-g09d2 (git 2.47.0) at 2024-11-22 08:31:53 +0000