mirror of
https://github.com/c0mmando/hackliberty-conf.git
synced 2024-10-01 05:05:41 -04:00
13 lines
1.1 KiB
Plaintext
13 lines
1.1 KiB
Plaintext
add_header Strict-Transport-Security "max-age=63072000; includeSubDomains; preload" always;
|
|
add_header X-Content-Type-Options "nosniff" always;
|
|
add_header Referrer-Policy "no-referrer" always;
|
|
add_header Cross-Origin-Opener-Policy "same-origin" always;
|
|
add_header Origin-Agent-Cluster "?1" always;
|
|
|
|
# obsolete and replaced with Content-Security-Policy frame-ancestors 'none'
|
|
#add_header X-Frame-Options "DENY" always;
|
|
|
|
# obsolete, unsafe and replaced with strong Content-Security-Policy
|
|
add_header X-XSS-Protection "0" always;
|
|
|
|
add_header Permissions-Policy "accelerometer=(), ambient-light-sensor=(), autoplay=(), battery=(), bluetooth=(), camera=(), clipboard-read=(), clipboard-write=(), display-capture=(), document-domain=(), encrypted-media=(), fullscreen=(), gamepad=(), geolocation=(), gyroscope=(), hid=(), idle-detection=(), interest-cohort=(), keyboard-map=(), local-fonts=(), magnetometer=(), microphone=(), midi=(), payment=(), picture-in-picture=(), publickey-credentials-get=(), screen-wake-lock=(), serial=(), speaker-selection=(), sync-xhr=(), usb=(), xr-spatial-tracking=()" always; |