diff options
| author | shibayashi <shibayashi@cypherpunk.observer> | 2018-11-03 23:41:37 +0100 |
|---|---|---|
| committer | shibayashi <shibayashi@cypherpunk.observer> | 2018-11-03 23:41:37 +0100 |
| commit | 56c49513e0f66fe6e40724c6b7f18c29263c77ca (patch) | |
| tree | 2230608c465df8af8e3e37b35d047198c1e09a6f /installation/caddyfile-pleroma.example | |
| parent | 007f1c73b1d42012763b51d2cbdd049783eb1844 (diff) | |
| download | pleroma-56c49513e0f66fe6e40724c6b7f18c29263c77ca.tar.gz pleroma-56c49513e0f66fe6e40724c6b7f18c29263c77ca.zip | |
Use the server name as variable
Diffstat (limited to 'installation/caddyfile-pleroma.example')
| -rw-r--r-- | installation/caddyfile-pleroma.example | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/installation/caddyfile-pleroma.example b/installation/caddyfile-pleroma.example index 2c1efde2d..d74eb82b6 100644 --- a/installation/caddyfile-pleroma.example +++ b/installation/caddyfile-pleroma.example @@ -22,7 +22,7 @@ social.domain.tld { Referrer-Policy "same-origin" Strict-Transport-Security "max-age=31536000; includeSubDomains;" Expect-CT "enforce, max-age=2592000" - Content-Security-Policy "default-src 'none'; base-uri 'self'; form-action 'self'; frame-ancestors 'none'; img-src 'self' data: https:; media-src 'self' https:; style-src 'self' 'unsafe-inline'; font-src 'self'; script-src 'self'; connect-src 'self' wss://social.domain.tld; upgrade-insecure-requests;" + Content-Security-Policy "default-src 'none'; base-uri 'self'; form-action 'self'; frame-ancestors 'none'; img-src 'self' data: https:; media-src 'self' https:; style-src 'self' 'unsafe-inline'; font-src 'self'; script-src 'self'; connect-src 'self' wss://{host}; upgrade-insecure-requests;" } # If you do not want remote frontends to be able to access your Pleroma backend server, remove these lines. |