- commit
- ea40a79
- parent
- 7f47487
- author
- Eric Bower
- date
- 2024-08-26 22:49:06 +0000 UTC
refactor(pgs): remove CSP and allow headers to be overriden
1 files changed,
+6,
-8
+6,
-8
1@@ -19,23 +19,21 @@
2
3 header {
4 # disable FLoC tracking
5- Permissions-Policy interest-cohort=()
6+ ?Permissions-Policy interest-cohort=()
7
8 # enable HSTS
9- Strict-Transport-Security max-age=31536000;
10+ ?Strict-Transport-Security max-age=31536000;
11
12 # disable clients from sniffing the media type
13- X-Content-Type-Options nosniff
14+ ?X-Content-Type-Options nosniff
15
16 # clickjacking protection
17- X-Frame-Options DENY
18+ ?X-Frame-Options DENY
19
20 # keep referrer data off of HTTP connections
21- Referrer-Policy no-referrer-when-downgrade
22+ ?Referrer-Policy no-referrer-when-downgrade
23
24- Content-Security-Policy "default-src 'self'; img-src * 'unsafe-inline'; style-src * 'unsafe-inline'"
25-
26- X-XSS-Protection "1; mode=block"
27+ ?X-XSS-Protection "1; mode=block"
28 }
29
30 @caddymetrics {