Commit 1ded4e87 authored by kaiyou's avatar kaiyou

Add security headers to nginx

parent 41b3d35d
......@@ -28,6 +28,12 @@ http {
client_max_body_size 20M;
add_header X-Frame-Options 'SAMEORIGIN';
add_header X-Content-Type-Options 'nosniff';
add_header X-Permitted-Cross-Domain-Policies 'none';
add_header X-XSS-Protection '1; mode=block';
add_header Referrer-Policy 'same-origin';
location /data {
root /;
}
......
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment