diff options
| author | kaniini <nenolod@gmail.com> | 2018-11-12 15:30:42 +0000 |
|---|---|---|
| committer | kaniini <nenolod@gmail.com> | 2018-11-12 15:30:42 +0000 |
| commit | 54923c2e55e2d241b53a62a4abbd2501abdcae32 (patch) | |
| tree | e6eed4cee8455f5f37346def8dfb2b29d91ca904 /installation/pleroma.nginx | |
| parent | e7d6f133ebaf7f7515456b44ee700e5ea7527b50 (diff) | |
| parent | 2829fa41830ad8565fc186c3dc110f4d275f8827 (diff) | |
| download | pleroma-54923c2e55e2d241b53a62a4abbd2501abdcae32.tar.gz pleroma-54923c2e55e2d241b53a62a4abbd2501abdcae32.zip | |
Merge branch 'feature/csp-plug' into 'develop'
migrate CSP management to CSPPlug
See merge request pleroma/pleroma!441
Diffstat (limited to 'installation/pleroma.nginx')
| -rw-r--r-- | installation/pleroma.nginx | 11 |
1 files changed, 0 insertions, 11 deletions
diff --git a/installation/pleroma.nginx b/installation/pleroma.nginx index 9b7419497..f0e684f2c 100644 --- a/installation/pleroma.nginx +++ b/installation/pleroma.nginx @@ -60,17 +60,6 @@ server { client_max_body_size 16m; location / { - add_header X-XSS-Protection "1; mode=block" always; - add_header X-Permitted-Cross-Domain-Policies "none" always; - add_header X-Frame-Options "DENY" always; - add_header X-Content-Type-Options "nosniff" always; - add_header Referrer-Policy "same-origin" always; - add_header X-Download-Options "noopen" always; - add_header Content-Security-Policy "default-src 'none'; base-uri 'self'; form-action *; frame-ancestors 'none'; img-src 'self' data: https:; media-src 'self' https:; style-src 'self' 'unsafe-inline'; font-src 'self'; script-src 'self'; connect-src 'self' wss://$server_name; upgrade-insecure-requests;" always; - - # Uncomment this only after you get HTTPS working. - # add_header Strict-Transport-Security "max-age=31536000; includeSubDomains" always; - proxy_http_version 1.1; proxy_set_header Upgrade $http_upgrade; proxy_set_header Connection "upgrade"; |