mirror of
https://github.com/linuxserver/docker-swag.git
synced 2024-12-28 08:49:23 -05:00
Set frame-ancestors in Content-Security-Policy
https://infosec.mozilla.org/guidelines/web_security#x-frame-options
This commit is contained in:
parent
50371fea4f
commit
01dd12f567
@ -40,7 +40,7 @@ ssl_early_data on;
|
||||
|
||||
# Optional additional headers
|
||||
#add_header Cache-Control "no-transform" always;
|
||||
#add_header Content-Security-Policy "upgrade-insecure-requests";
|
||||
#add_header Content-Security-Policy "upgrade-insecure-requests; frame-ancestors 'self'";
|
||||
#add_header Referrer-Policy "same-origin" always;
|
||||
#add_header X-Content-Type-Options "nosniff" always;
|
||||
#add_header X-Frame-Options "SAMEORIGIN" always;
|
||||
|
Loading…
Reference in New Issue
Block a user