external/mailinabox
1
0
Fork 0
mirror of https://github.com/mail-in-a-box/mailinabox.git synced 2026-03-18 18:07:22 +01:00
Code Issues Releases Wiki Activity

add nginx security headers

Browse Source
This commit is contained in:
KiekerJan
2021-08-02 00:05:12 +02:00
parent 1f35158211
commit cf6eac0d0c
2 changed files with 7 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

5
conf/nginx/security.conf Normal file
View File

@@ -0,0 +1,5 @@
add_header Strict-Transport-Security 'max-age=31536000; includeSubDomains; preload';
add_header X-Frame-Options "SAMEORIGIN";
add_header X-Content-Type-Options nosniff;
add_header Content-Security-Policy-Report-Only "default-src 'self'; font-src *;img-src * data:; script-src *; style-src *;frame-ancestors 'self'";
add_header Referrer-Policy "strict-origin";