nginx_site: Add more strict headers to collab

2024-04-02 16:47:49 +00:00 · 2024-04-02 16:47:49 +00:00 · 583b106d39
commit 583b106d39
parent 50f02e85ac
1 changed files with 5 additions and 0 deletions
--- a/roles/nginx_site/templates/collab.foo.sh.conf.j2
+++ b/roles/nginx_site/templates/collab.foo.sh.conf.j2
@ -1 +1,6 @@
    client_max_body_size 50m;
+
+    add_header Content-Security-Policy "default-src 'self'; script-src 'self' 'unsafe-inline'; style-src 'self' 'unsafe-inline'";
+    add_header Referrer-Policy "no-referrer";
+    add_header X-Content-Type-Options "nosniff";
+    add_header X-XSS-Protection "1; mode=block";