From de854ac0a8fe72a1b0d0137c351b39de25e0adfe Mon Sep 17 00:00:00 2001
From: Miquel Lionel <lionel@les-miquelots.net>
Date: Thu, 24 Jun 2021 13:53:58 +0100
Subject: Implemented very basic multi-user support

    - the `gpigeonctl' script is used to initialize the database, add an user and delete it,
    clear cookies. More info in the readme about it.
    - tweaked gpigeon-template.cgi and link-template-tmpl.cgi to
    support multiusers
    - tweaked the Makefile
    - tweaked the config.def.mk and added WWWUSER and WWWDIR
    variables
    - made some ajustements in the styles.css file for
    responsivity.
    - added some headers for security in nginx-example.conf
    - added gpigeonctl.def which serves as a "blueprint" for gpigeonctl
---
 nginx-example.conf | 6 ++++++
 1 file changed, 6 insertions(+)

(limited to 'nginx-example.conf')

diff --git a/nginx-example.conf b/nginx-example.conf
index 97e5027..f3d9252 100644
--- a/nginx-example.conf
+++ b/nginx-example.conf
@@ -30,5 +30,11 @@ server {
         fastcgi_pass unix:/run/fcgiwrap.sock;
         include /etc/nginx/fastcgi_params;
     }
+
+    add_header Strict-Transport-Security "max-age=63072000; preload";
+    add_header Content-Security-Policy "default-src 'self'";
+    add_header X-Frame-Options DENY;
+    add_header Access-Control-Allow-Origin https://$server_name;
+    add_header Vary Origin; # https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Access-Control-Allow-Origin#cors_and_caching
 }
 
-- 
cgit v1.2.3-70-g09d2