carpathianflorist
/
MarseyWorld
forked from MarseyWorld/MarseyWorld
1
0
Fork 0
Code Pull Requests Activity

make sure resources have all headers too

master
Aevann1 2022-11-30 12:03:14 +02:00
parent d3fec8e27c
commit ef5c24cae5
1 changed files with 5 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
nginx-serve-static.conf
View File

@ -1,6 +1,11 @@
root /;
try_files $uri =404;
add_header 'Cache-Control' "public, max-age=3153600";
add_header Referrer-Policy "same-origin";
add_header Strict-Transport-Security "max-age=31536000; includeSubDomains; preload";
add_header X-Frame-Options "deny";
add_header X-Content-Type-Options "nosniff";
add_header Content-Security-Policy "script-src 'self' 'unsafe-inline' challenges.cloudflare.com; connect-src 'self' tls-use1.fpapi.io api.fpjs.io 00bb6d59-7b11-4339-b1ae-b1f1259d1316.pushnotifications.pusher.com; object-src 'none';";
sendfile on;
sendfile_max_chunk 1m;